Overview
- The most severe flaw, CVE-2025-69258, is a LoadLibraryEX issue that enables unauthenticated DLL injection and code execution as SYSTEM with a CVSS score of 9.8.
- Tenable’s analysis shows attackers can send message 0x0a8d to the MsgReceiver.exe service on TCP port 20001 to load a malicious DLL.
- Two additional bugs, CVE-2025-69259 and CVE-2025-69260 (CVSS 7.5), allow unauthenticated denial-of-service via specially crafted messages to the same component.
- Trend Micro’s Critical Patch Build 7190 fixes all three issues, and customers on earlier on‑premise builds are urged to update promptly and review remote access to management servers.
- No active exploitation has been reported, though public PoCs are expected to spur scanning of internet-exposed Apex Central installations.