TRENDAI , the enterprise business of Trend Micro, has patched a zero-day vulnerability in its Apex One product, tracked as CVE-2026-34926. This medium-severity directory traversal issue can be exploited by unauthenticated local attackers with admin credentials to compromise the server. Notably, this vulnerability has been added to CISA's Known Exploited Vulnerabilities catalog, urging federal agencies to mitigate it by June 4.
TrendAI also addressed several high-severity vulnerabilities that allow local privilege escalation. Customers are advised to apply patches promptly and review access to critical systems.