Use of Obsolete Function

CVE-2025-49213

High

9.8/10

Summary

An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49212 but is in a different method.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-477 - Use of Obsolete Function

The code uses deprecated or obsolete functions, which suggests that the code has not been actively reviewed or maintained.

References

Advisory Timeline

Published Jun 17, 2025

Use of Obsolete Function

CVE-2025-49213

Summary

CWE-477 - Use of Obsolete Function

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS