Trend Micro users beware - dangerous Apex One zero-day exploited in the wild
A zero-day vulnerability in Trend Micro's Apex One product is currently being exploited by hackers. The flaw, identified as CVE-2026-34926, allows local administrators to inject malicious code into the system. Users are urged to apply the patch provided by Trend Micro to mitigate the risk of exploitation.
- ▪The vulnerability is a medium-severity directory traversal flaw that requires prior admin access to exploit.
- ▪CISA has included this vulnerability in its KEV catalog, mandating federal agencies to update by June 4, 2026.
- ▪Trend Micro has reported at least one exploitation attempt of this vulnerability.
Opening excerpt (first ~120 words) tap to expand
Pro Security Trend Micro users beware - dangerous Apex One zero-day exploited in the wild News By Sead Fadilpašić published 25 May 2026 A newly discovered flaw allows hackers to inject malicious code When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. (Image credit: Getty Images) Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter Trend Micro patches CVE‑2026‑34926, a medium‑severity directory traversal flaw in Apex One (on‑prem) that lets local admins inject malicious codeDespite requiring prior admin access, the bug is already being exploited in the wild, prompting urgent patching…
Excerpt limited to ~120 words for fair-use compliance. The full article is at TechRadar.
Discussion
0 commentsMore from TechRadar
