CVE-2025-71215

UNKNOWN 0.0

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent iCore service signature verification could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The following information is provided as informational only for CVE references, as these were addressed already via ActiveUpdate/SaaS updates in mid to late 2025 (SaaS 2507 & 2005 Yearly Release).

Vendor	trend micro, inc.
Product	trendai apex one (mac)
Published	May 21, 2026

Stay Ahead of the Next One

Get instant alerts for trend micro, inc. trendai apex one (mac)

Be the first to know when new unknown vulnerabilities affecting trend micro, inc. trendai apex one (mac) are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Trend Micro, Inc. / TrendAI Apex One (Mac)

NA < NA

References

NVD ↗ CVE.org ↗ EPSS Data ↗

success.trendmicro.com: https://success.trendmicro.com/en-US/solution/KA-0022458 zerodayinitiative.com: https://www.zerodayinitiative.com/advisories/ZDI-26-141/