Trend Micro has patched an actively exploited Apex One zero-day, CVE-2026-34926, that could let a local attacker with admin access inject malicious code into on-premises Windows deployments. CISA added the flaw to its known exploited vulnerabilities list and ordered federal agencies to patch quickly, while Trend Micro also fixed seven privilege escalation bugs in the Apex One SEP agent. #TrendMicro #ApexOne #CVE-2026-34926 #CISA
Keypoints
- Trend Micro fixed an Apex One zero-day exploited in attacks against Windows systems.
- CVE-2026-34926 is a directory traversal flaw in the on-premises Apex One server.
- The bug can allow code injection if an attacker already has administrative access.
- CISA added the vulnerability to its actively exploited list and set a patch deadline for federal agencies.
- Trend Micro also released fixes for seven local privilege escalation flaws in the Apex One SEP agent.