CVE-2026-34930

🗓️ 21 May 2026 13:04:02Reported by trendmicroType

Origin validation flaw in Apex One SEP agent enables local privilege escalation; attacker must execute low code.

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2026-34930	21 May 202613:04	–	attackerkb
Circl	CVE-2026-34930	20 May 202622:00	–	circl
CNNVD	Trend Micro Apex One和TrendAI Vision One Endpoint Security - Standard Endpoint Protection 访问控制错误漏洞	21 May 202600:00	–	cnnvd
Cvelist	CVE-2026-34930	21 May 202613:04	–	cvelist
EUVD	EUVD-2026-31282	21 May 202613:04	–	euvd
Japan Vulnerability Notes	Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (May 2026)	22 May 202607:44	–	jvn
NVD	CVE-2026-34930	21 May 202614:16	–	nvd
Positive Technologies	PT-2026-42469	21 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-34930	5 Jun 202619:22	–	redhatcve
Tenable Nessus	Trend Micro Apex One < SP1 (b17079) Multiple Vulnerabilities (KA-0023430)	22 May 202600:00	–	nessus

NVD

Node

trendmicro apex_oneRange<14.0.0.17079on-premiseswindows

trendmicro apex_oneRange<14.0.20731saaswindows

[
  {
    "vendor": "Trend Micro, Inc.",
    "product": "TrendAI Apex One",
    "versions": [
      {
        "version": "2019 (14.0)",
        "status": "affected",
        "versionType": "semver",
        "lessThan": "14.0.0.17079"
      }
    ],
    "cpes": [
      "cpe:2.3:a:trendmicro:apexone_op:14.0.0.17079:*:*:*:*:*:*:*"
    ]
  },
  {
    "vendor": "Trend Micro, Inc.",
    "product": "TrendAI Apex One as a Service",
    "versions": [
      {
        "version": "SaaS",
        "status": "affected",
        "versionType": "semver",
        "lessThan": "14.0.20731"
      }
    ],
    "cpes": [
      "cpe:2.3:a:trendmicro:apexone_saas:14.0.0.20731:*:*:*:*:*:*:*"
    ]
  }
]

Source	Link
success	www.success.trendmicro.com/en-US/solution/KA-0023430

22 May 2026 13:39Current

6Medium risk

Vulners AI Score6

CVSS 3.17.8

EPSS0.00008

SSVC

CWE-346