CVE-2026-34926: Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability

CVE ID

CVE-2026-34926

Vulnerability Name

Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability

• Project: Trend Micro
• Product: Apex One

Date

• Date Added: 2026-05-21
• Due Date: 2026-06-04

Description

Trend Micro Apex One (on-premise) contains a directory traversal vulnerability that could allow a pre-authenticated local attacker to modify a key table on the server to inject malicious code to deploy to agents on affected installations.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://success.trendmicro.com/en-US/solution/KA-0023430 ; https://nvd.nist.gov/vuln/detail/CVE-2026-34926

Related Security News

• CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

More CVEs Info

Common Vulnerabilities & Exposures (CVE) List