{"id":391556,"date":"2026-05-22T14:39:30","date_gmt":"2026-05-22T14:39:30","guid":{"rendered":"https:\/\/malwaretips.com\/blogs\/?p=391556"},"modified":"2026-05-22T14:39:31","modified_gmt":"2026-05-22T14:39:31","slug":"trend-micro-fixes-actively-exploited-apex-one-flaw","status":"publish","type":"post","link":"https:\/\/malwaretips.com\/blogs\/trend-micro-fixes-actively-exploited-apex-one-flaw\/","title":{"rendered":"Trend Micro Fixes Actively Exploited Apex One Flaw"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">Trend Micro has patched a <strong>zero-day vulnerability in Apex One<\/strong> that was already being used in real attacks.<\/p><div id=\"mwtad3508274418\" class=\"gas_fallback-ad_309684--placement_360520\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"3957935887\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">The flaw, tracked as <strong>CVE-2026-34926<\/strong>, affects the <strong>on-premises Apex One server<\/strong>. Attackers who already have admin access to the server could abuse it to push malicious code to protected devices.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">CISA has added the bug to its <strong>actively exploited vulnerabilities list<\/strong> and ordered U.S. federal agencies to patch by <strong>June 4<\/strong>.<\/p><div id=\"mwtad3587952838\" class=\"gas_fallback-ad_381396-ad_309691-placement_360566\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"1471373341\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Trend Micro also fixed <strong>seven additional privilege escalation flaws<\/strong> in the Apex One agent.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Bottom line: organizations using Apex One on-prem should patch immediately.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Trend Micro has patched a zero-day vulnerability in Apex One that was already being used in real attacks. The flaw, tracked as CVE-2026-34926, affects the on-premises Apex One server. Attackers who already have admin access &#8230; <\/p>\n<p class=\"read-more-container\"><a title=\"Trend Micro Fixes Actively Exploited Apex One Flaw\" class=\"read-more button\" href=\"https:\/\/malwaretips.com\/blogs\/trend-micro-fixes-actively-exploited-apex-one-flaw\/#more-391556\" aria-label=\"Read more about Trend Micro Fixes Actively Exploited Apex One Flaw\">Read more<\/a><\/p>\n","protected":false},"author":51,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"status","meta":{"footnotes":""},"categories":[49],"tags":[],"class_list":["post-391556","post","type-post","status-publish","format-status","hentry","category-scam-reports","post_format-post-format-status","masonry-post","generate-columns","tablet-grid-50","mobile-grid-100","grid-parent","grid-50"],"_links":{"self":[{"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/posts\/391556","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/users\/51"}],"replies":[{"embeddable":true,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/comments?post=391556"}],"version-history":[{"count":0,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/posts\/391556\/revisions"}],"wp:attachment":[{"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/media?parent=391556"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/categories?post=391556"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/tags?post=391556"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}