CVE-2025-49216
Trend Micro Endpoint Encryption DbAppDomain Authentication Bypass Vulnerability
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
An authentication bypass vulnerability in the Trend Micro Endpoint Encryption PolicyServer could allow an attacker to access key methods as an admin user and modify product configurations on affected installations.
This vulnerability allows remote attackers to bypass authentication on affected installations of Trend Micro Endpoint Encryption. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DbAppDomain service. The issue results from an improper implementation of an authentication algorithm. An attacker can leverage this vulnerability to bypass authentication on the system.
*Credits:
Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2025-06-03 CVE Reserved
- 2025-06-11 CVE Published
- 2025-06-18 CVE Updated
- 2025-06-18 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-477: Use of Obsolete Function
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://success.trendmicro.com/en-US/solution/KA-0019928 | ||
| https://www.zerodayinitiative.com/advisories/ZDI-25-373 |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Trend Micro, Inc. Search vendor "Trend Micro, Inc." | Trend Micro Endpoint Encryption Policy Server Search vendor "Trend Micro, Inc." for product "Trend Micro Endpoint Encryption Policy Server" | >= 6.0.0.0 < 6.0.0.4013 Search vendor "Trend Micro, Inc." for product "Trend Micro Endpoint Encryption Policy Server" and version " >= 6.0.0.0 < 6.0.0.4013" | en |
Affected
| ||||||