Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
CVE-2025-49217: Trend Micro Endpoint Encryption PolicyServer: Remote Code Execution via Malformed Data
CVE-2025-49217
Summary
The Trend Micro Endpoint Encryption PolicyServer may allow an attacker to execute malicious code on affected systems without needing a login. This is a potential security risk because an attacker could gain unauthorized access to sensitive data. To protect against this vulnerability, update the PolicyServer to the latest version.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions |
|---|---|---|
| trendmicro | trend_micro_endpoint_encryption |
< 6.0.0.4013 cpe:2.3:a:trendmicro:trend_micro_endpoint_encryption:*:*:*:*:*:*:*:* |
Original title
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerab...
Original description
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49213 but is in a different method.
nvd CVSS3.1
9.8
Vulnerability type
CWE-477
CWE-502
Deserialization of Untrusted Data
- https://success.trendmicro.com/en-US/solution/KA-0019928 Vendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-25-374/ Third Party Advisory
Published: 17 Jun 2025 · Updated: 15 Jun 2026 · First seen: 7 Mar 2026