Description

A LoadLibraryEX vulnerability in Trend Micro Apex Central could allow an unauthenticated remote attacker to load an attacker-controlled DLL into a key executable, leading to execution of attacker-supplied code under the context of SYSTEM on affected installations.

Related CPE's

a

trendmicro

apex_central

16

o

microsoft

windows

-

References

https://success.trendmicro.com/en-US/solution/KA-0022071

Vendor Advisory

https://success.trendmicro.com/ja-JP/solution/KA-0022081

Vendor Advisory

https://www.tenable.com/security/research/tra-2026-01

ExploitThird Party Advisory

Weaknesses

[email protected]

Secondary
CWE-120CWE-290CWE-346

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2026-01-08T13:15:42.870Z

1 week ago

Last modified

2026-01-15T19:18:37.133Z

1 hour ago