CVE-2023-41179

HIGH 7.2

⚠️ CISA KEV

CVSS Score

7.2

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability in the 3rd party AV uninstaller module contained in Trend Micro Apex One (on-prem and SaaS), Worry-Free Business Security and Worry-Free Business Security Services could allow an attacker to manipulate the module to execute arbitrary commands on an affected installation. Note that an attacker must first obtain administrative console access on the target system in order to exploit this vulnerability.

Vendor	trend micro, inc.
Product	trend micro apex one
Published	Sep 19, 2023
Last Updated	Oct 21, 2025

⚠️ Actively Exploited — Act Now

Get instant alerts for trend micro, inc. trend micro apex one

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2023-41179.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Trend Micro, Inc. / Trend Micro Apex One

2019 (14.0) < 14.0.0.12380

Trend Micro, Inc. / Trend Micro Apex One

SaaS < 14.0.12637

Trend Micro, Inc. / Trend Micro Worry-Free Business Security

10.0 SP1 < 10.0 SP1 Build 2495

Trend Micro, Inc. / Trend Micro Worry-Free Business Security Services

SaaS < 6.7.3578 / 14.3.1105

References

NVD ↗ CVE.org ↗ EPSS Data ↗

success.trendmicro.com: https://success.trendmicro.com/solution/000294994 success.trendmicro.com: https://success.trendmicro.com/jp/solution/000294706 jvn.jp: https://jvn.jp/en/vu/JVNVU90967486/ cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-41179