Trend Micro

Trend Micro, a major cybersecurity software vendor, has a critical vulnerability (CVSS 9.8) that can be exploited remotely over the network without authentication or user interaction, allowing attackers to fully compromise confidentiality, integrity, and availability of affected systems. The flaw was reported in August 2025 with a December 2024 deadline, meaning a patch should already be available or imminent. Security teams should immediately identify and patch all Trend Micro products in their environment and monitor for any exploitation attempts targeting this critical vulnerability.