CVE-2025-47865 | Trend Micro Apex Central Widget getObjWGFServiceApiByApiName file inclusion

Inserito da Angelo Barbosa | Mag 21, 2025 | CVE

A vulnerability classified as critical was found in Trend Micro Apex Central. This vulnerability affects the function getObjWGFServiceApiByApiName of the component Widget. The manipulation leads to file inclusion.

This vulnerability was named CVE-2025-47865. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-47865 | Trend Micro Apex Central Widget getObjWGFServiceApiByApiName file inclusion

Post correlati

CVE-2024-55556 | Crater Invoice deserialization

CVE-2025-4217 | WP YouTube Video Optimizer Plugin up to 1.2 on WordPress Shortcode ib_youtube cross site scripting

CVE-2024-37758 | Digiteam 4.21.0.0 AddRoleMenu access control

CVE-2023-27195 | Trimble TM4Web 22.2.0 Registration tm_ajax.msw access control