CISA KEV: Trend Micro Apex One — Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability

Thursday, May 21, 2026 at 12:00 AM UTC·Source: CISA KEV

Updated: Thursday, May 21, 2026 at 07:00 PM UTC

Executive Summary

Trend Micro Apex One (on-premise) contains a directory traversal vulnerability that could allow a pre-authenticated local attacker to modify a key table on the server to inject malicious code to deploy to agents on affected installations.

Analysis

Indicators of Compromise (1)

CVE (1)

CVE-2026-34926

NVD MITRE CVE

Source Attribution

Originally published by CISA KEV on May 21, 2026. Verified by: CISA.

Related Threats

LOWVulnerabilityNEW

CISA to allow researchers to report vulnerabilities to exploited bugs catalog

The Cybersecurity and Infrastructure Security Agency (CISA) announced the creation of a nomination form on Thursday that they said enables “researchers, vendors, and industry partners” to report bugs that need to be added to the Known Exploited Vulnerabilities catalog.

Just nowThe Record

MEDIUMVulnerabilityNEW

NAB refreshes app

NAB has unveiled a refreshed NAB app and Internet Banking experience, focused on helping customers to better manage and protect their money at a time when every dollar matters.

1m agoFinextra

LOWVulnerabilityNEW

Proposed State Laws For Breach Notification Could Reshape Incident Response Plans

Joseph Lazzarotti of JacksonLewis writes: State breach-notification laws continue to evolve, and legislatures are using 2026 sessions to tighten consumer protections and shift the civil liability landscape that often follows a cyber event. For businesses, the practical takeaway is that incident response planning increasingly needs to account not only for “whether notice is required,” but... Source

54m agoDataBreaches.net