KEVIntel
PRO Back to KEVs
6.7
CVSS
Medium

CVE-2026-34926

PUBLISHED

A directory traversal vulnerability in the Apex One (on-premise) server could allow a pre-authenticated local attacker to modify a key table on the...

1 day faster than CISA KEV

Exploited in the wild PoC available No user interaction
Vendor
Trend Micro, Inc.
Product
TrendAI Apex One, TrendAI Apex One as a Service
Published
May 21, 2026
EPSS
1.0% · 78% pctl

Automate this intelligence with the Pro API

Everything on this page — CVSS, EPSS, exploit status, PoCs, scanner integrations, mentions, tags, and immediate honeypot data — is available programmatically for VM, SOC, and CTI workflows.

Learn about Pro

Description

A directory traversal vulnerability in the Apex One (on-premise) server could allow a pre-authenticated local attacker to modify a key table on the server to inject malicious code to deploy to agents on affected installations. This vulnerability is only exploitable on the on-premise version of Apex One and a potential attacker must have access to the Apex One Server and already obtained administrative credentials to the server via some other method to exploit this vulnerability.

cisa

Weaknesses (CWE)

  • CWE-23

    Relative Path Traversal

CVSS scores

CVSS v3.1 6.7 Medium

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:L

Exploitation status

Exploited in the wild

Recorded 2026-06-01 13:29:30 UTC · CVE

Proof of concept available

Recorded 2026-05-22 09:58:04 UTC · GitHub

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
CVE First 2026-06-01 13:29 UTC
CISA 2026-06-02 14:00 UTC

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

HORKimhab/CVE-2026-34926

github · Created 2026-05-22 09:58:04 UTC · 0 stars

CVE-2026-34926

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Proof of Concept Exploit Available

  • Added to KEVIntel

  • KEV confirmed by CISA