Actively exploited Trend Micro Apex One flaw gets CISA warning (CVE-2026-34926)

Trend Micro confirmed that CVE-2026-34926, a relative directory path traversal affecting Apex One on-premises servers, has been observed exploited in the wild; an attacker with prior access and administrative credentials can modify server tables to inject malicious code and distribute it to agents. Trend Micro urges immediate patching and access reviews, and CISA has added the CVE to its Known Exploited Vulnerabilities catalog with mandated patching timelines for federal agencies.