Primary

Context

Trend Micro Endpoint Encryption PolicyServer Deserialization Vulnerability Leading to Post-Authentication Remote Code Execution

Vulnerability

A deserialization vulnerability has been identified in Trend Micro Endpoint Encryption PolicyServer versions prior to 6.0.0.4013. This vulnerability allows for post-authentication remote code execution on affected systems. To exploit this issue, an attacker must first gain the ability to execute low-privileged code on the target system.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected system, with the executed code running in the context of the SYSTEM user.

Remediation

Users are advised to update to Trend Micro Endpoint Encryption PolicyServer Patch 1 Update 6 (Version 6.0.0.4013), now available. For additional guidance, consult the Trend Micro Business Success Portal article KA-0019928.

Added: Jun 17, 2025, 9:36 PM

Updated: Jun 17, 2025, 9:36 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.2

remediation

7.7

relevance

0.2

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.2

remediation

7.7

relevance

0.2

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Trend Micro Endpoint Encryption PolicyServer Deserialization Vulnerability Leading to Post-Authentication Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating