Origin Validation Vulnerability in Apex One/SEP Agent by Trend Micro
CVE-2026-34927

7.8HIGH

Key Information:

Vendor: Trend Micro
Status: Trendai Apex One; Trendai Apex One As A Service
Vendor: CVE Published:; 21 May 2026

🔔 Create Trend Micro Vulnerability Alert

What is CVE-2026-34927?

A vulnerability related to origin validation in the Apex One/SEP Agent presents the potential for local privilege escalation. An attacker with the ability to execute low-privileged code on the target system could exploit this weakness, potentially allowing them to gain higher privileges. Organizations using the affected versions should assess their security posture and consider applying necessary patches to mitigate the risks associated with this vulnerability.

Affected Version(s)

TrendAI Apex One 2019 (14.0) < 14.0.0.17079

TrendAI Apex One as a Service SaaS < 14.0.20731

References

https://success.trendmicro.com/en-US/solution/KA-0023430

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 21, 2026
Vulnerability Reserved
Mar 31, 2026

CVE-2026-34927 Data

JSON