Rewterz

Rilide Malware: A Malicious Browser Extension Targeting Chrome And Edge Users for Credential Theft – Active IOCs

March 25, 2025
Rewterz

Google Patches Chrome Zero-Day Exploit in Active Attacks

March 26, 2025

Multiple Trend Micro Apex One Vulnerabilities

Severity

High

Analysis Summary

CVE-2024-58104 CVSS:7.3

A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing security and execute arbitrary code on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVE-2024-58105 CVSS:7.3

A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing security and execute arbitrary code on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Impact

  • Security Bypass
  • Code Execution

Indicators of Compromise

CVE

  • CVE-2024-58104

  • CVE-2024-58105

Affected Vendors

Trend Micro

Affected Products

  • Trend Micro Apex One - 2019 (14.0)
  • Trend Micro Apex One as a Service - SaaS

Remediation

Refer to Trend Micro Website for patch, upgrade, or suggested workaround information.

Trend Micro Website

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.