Trend Micro

Trend Micro, a major cybersecurity software vendor, has a critical vulnerability (CVSS 9.8) that can be exploited remotely over the network without authentication or user interaction, allowing attackers to fully compromise confidentiality, integrity, and availability. The vulnerability requires minimal attack complexity and affects the core system itself rather than isolated components. Security teams should immediately prioritize patching Trend Micro products once updates are available and closely monitor for exploitation attempts targeting this flaw until the December 24, 2025 deadline.