CVE-2025-30680 Information
Jun 18, 2025
cve
Description
A Server-side Request Forgery (SSRF) vulnerability in Trend Micro Apex Central (SaaS) could allow an attacker to manipulate certain parameters leading to information disclosure on affected installations.
Please note: this vulnerability only affects the SaaS instance of Apex Central - customers that automatically apply Trend Micro’s monthly maintenance releases to the SaaS instance do not have to take any further action.
Reference
https://success.trendmicro.com/en-US/solution/KA-0019355 https://www.zerodayinitiative.com/advisories/ZDI-25-238/
Related CNNVD
CNNVD-202506-2104 (Published: 2025-06-17)
Share on: