CVE-2025-30679 – Trend Micro Apex Central SSRF

June 17, 2025

CVE ID : CVE-2025-30679

Published : June 17, 2025, 8:15 p.m. | 15 minutes ago

Description : A Server-side Request Forgery (SSRF) vulnerability in Trend Micro Apex Central (on-premise) modOSCE component could allow an attacker to manipulate certain parameters leading to information disclosure on affected installations.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-30680 – Trend Micro Apex Central SSRF Vulnerability

Next Article CVE-2025-30678 – Trend Micro Apex Central SSRF Vulnerability

Highlights

CVE-2025-22235 – Spring Security Endpoint Request Denial of Service (DoS)

April 28, 2025

CVE ID : CVE-2025-22235

Published : April 28, 2025, 8:15 a.m. | 4 hours, 14 minutes ago

Description : EndpointRequest.to() creates a matcher for null/** if the actuator endpoint, for which the EndpointRequest has been created, is disabled or not exposed.

Your application may be affected by this if all the following conditions are met:

* You use Spring Security
* EndpointRequest.to() has been used in a Spring Security chain configuration
* The endpoint which EndpointRequest references is disabled or not exposed via web
* Your application handles requests to /null and this path needs protection

You are not affected if any of the following is true:

* You don’t use Spring Security
* You don’t use EndpointRequest.to()
* The endpoint which EndpointRequest.to() refers to is enabled and is exposed
* Your application does not handle requests to /null or this path does not need protection

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Understand and Code DeepSeek V3

April 1, 2025

ROG just revealed an Xbox-certified wireless controller — a premium gamepad with TMR joysticks built to banish drift for good

August 24, 2025

CVE-2025-32924 – Roninwp Revy SQL Injection Vulnerability

May 19, 2025

8 Top AI Agent Development Companies Transforming Node.js Automation (2025–2026 Edition)

Representative Line: Reduced to a Union

Functional Personas With AI: A Lean, Practical Workflow

Vibe Coding vs React.js AI-Assisted Coding: A C-Suite Comparison (2025)

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

Development Release: Fedora 43 Beta

Distribution Release: Murena 3.1.1

Shopping Portal using Python Django & MySQL

Shopping Portal using Python Django & MySQL

Perficient Earns Adobe’s Real-time CDP Specialization

What is Microsoft Copilot?

Distribution Release: Mauna Linux 25

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

Development Release: Fedora 43 Beta

CVE-2025-30679 – Trend Micro Apex Central SSRF

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Get a ‘Legion Go S’ alternative to the Steam Deck for $499.99 with Windows — Honestly, it should have launched at this price anyway

CVE-2025-43862 – Dify APP Orchestration Privilege Escalation Vulnerability

CVE-2025-53821 – WeGIA Open Redirect Vulnerability

CVE-2021-47662 – F5 Networks HTTPS DoS Vulnerability

CVE-2025-22235 – Spring Security Endpoint Request Denial of Service (DoS)

Understand and Code DeepSeek V3

ROG just revealed an Xbox-certified wireless controller — a premium gamepad with TMR joysticks built to banish drift for good

CVE-2025-32924 – Roninwp Revy SQL Injection Vulnerability

CVE-2025-30679 – Trend Micro Apex Central SSRF

Related Posts