CVE-2026-34929

🗓️ 21 May 2026 13:03:50Reported by trendmicroType

Origin validation flaw in Apex One and SEP agent allows local privilege escalation after low privilege code execution.

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2026-34929	21 May 202613:03	–	attackerkb
Circl	CVE-2026-34929	20 May 202622:00	–	circl
CNNVD	Trend Micro Apex One和TrendAI Vision One Endpoint Security - Standard Endpoint Protection 访问控制错误漏洞	21 May 202600:00	–	cnnvd
CVE	CVE-2026-34929	21 May 202613:03	–	cve
EUVD	EUVD-2026-31280	21 May 202613:03	–	euvd
Japan Vulnerability Notes	Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (May 2026)	22 May 202607:44	–	jvn
NVD	CVE-2026-34929	21 May 202614:16	–	nvd
Positive Technologies	PT-2026-42468	21 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-34929	5 Jun 202619:22	–	redhatcve
Tenable Nessus	Trend Micro Apex One < SP1 (b17079) Multiple Vulnerabilities (KA-0023430)	22 May 202600:00	–	nessus

[
  {
    "vendor": "Trend Micro, Inc.",
    "product": "TrendAI Apex One",
    "versions": [
      {
        "version": "2019 (14.0)",
        "status": "affected",
        "versionType": "semver",
        "lessThan": "14.0.0.17079"
      }
    ],
    "cpes": [
      "cpe:2.3:a:trendmicro:apexone_op:14.0.0.17079:*:*:*:*:*:*:*"
    ]
  },
  {
    "vendor": "Trend Micro, Inc.",
    "product": "TrendAI Apex One as a Service",
    "versions": [
      {
        "version": "SaaS",
        "status": "affected",
        "versionType": "semver",
        "lessThan": "14.0.20731"
      }
    ],
    "cpes": [
      "cpe:2.3:a:trendmicro:apexone_saas:14.0.0.20731:*:*:*:*:*:*:*"
    ]
  }
]

Source	Link
success	www.success.trendmicro.com/en-US/solution/KA-0023430

21 May 2026 13:03Current

CVSS 3.17.8

EPSS0.00211

CWE-346