TrendMicro Apexone Op
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in TrendMicro Apexone Op.
By the Year
In 2026 there have been 12 vulnerabilities in TrendMicro Apexone Op with an average score of 8.0 out of ten.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 12 | 8.04 |
It may take a day or so for new Apexone Op vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent TrendMicro Apexone Op Security Vulnerabilities
Apex One/SEP Agent TOCTOU Enables Local Priv Escalation
CVE-2026-45208
7.8 - High
- May 21, 2026
A time-of-check time-of-use vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
TOCTTOU
Local Priv Escalation via Origin Validation in Trend Micro Apex One/SEP
CVE-2026-45207
7.8 - High
- May 21, 2026
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-45206 but exists in a different process protection communication mechanism. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Origin Validation Error
CVE-2026-45206: LPE via origin validation in Trend Micro Apex One/SEP agent
CVE-2026-45206
7.8 - High
- May 21, 2026
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-45207 but exists in a different process protection communication mechanism. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Origin Validation Error
Privilege Escalation via Origin Validation in Trend Micro Apex One Agent
CVE-2026-34930
7.8 - High
- May 21, 2026
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-34927 but exists in a different process protection mechanism. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Origin Validation Error
Privilege Escalation via Origin Validation in Apex One Agent IPC
CVE-2026-34929
7.8 - High
- May 21, 2026
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-34927 but exists in a different inter-process communication mechanism. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Origin Validation Error
Origin Validation Privilege Escalation via Named Pipe in Apex One
CVE-2026-34928
7.8 - High
- May 21, 2026
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-34927 but exists in a different named pipe communication mechanism. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Origin Validation Error
Trend Micro Apex One Agent - LPE via Origin Validation
CVE-2026-34927
7.8 - High
- May 21, 2026
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Origin Validation Error
PreAuth Local Directory Traversal in TrendMicro Apex One Server (onprem)
CVE-2026-34926
6.7 - Medium
- May 21, 2026
A directory traversal vulnerability in the Apex One (on-premise) server could allow a pre-authenticated local attacker to modify a key table on the server to inject malicious code to deploy to agents on affected installations. This vulnerability is only exploitable on the on-premise version of Apex One and a potential attacker must have access to the Apex One Server and already obtained administrative credentials to the server via some other method to exploit this vulnerability.
Relative Path Traversal
Trend Micro Apex One origin validation error allows local privileged escalation
CVE-2025-71213
7.8 - High
- May 21, 2026
An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Origin Validation Error
Trend Micro Apex One PrivEsc via Link-Following in Scan Engine (CVE-2025-71212)
CVE-2025-71212
7.8 - High
- May 21, 2026
A link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
insecure temporary file
Trend Micro Apex One Admin Console RCE via Remote File Upload
CVE-2025-71211
9.8 - Critical
- May 21, 2026
A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is similar in scope to CVE-2025-71210 but affects a different executable. Please note: although this vulnerability carries a technical critical CVSS rating, this was reported via responsible disclosure via a researcher through the Zero Day Initiative. The SaaS versions of the product have already been mitigated and no customer action required. For this particular vulnerability, an attacker must have access to the Trend Micro Apex One Management Console, so customers that have their consoles IP address exposed externally should consider mitigating factors such as source restrictions if not already applied.
Directory traversal
Remote Code Execution via Upload on Trend Micro Apex One Console
CVE-2025-71210
9.8 - Critical
- May 21, 2026
A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. Please note: although this vulnerability carries a technical critical CVSS rating, this was reported via responsible disclosure via a researcher through the Zero Day Initiative. The SaaS versions of the product have already been mitigated and no customer action required. For this particular vulnerability, an attacker must have access to the Trend Micro Apex One Management Console, so customers that have their consoles IP address exposed externally should consider mitigating factors such as source restrictions if not already applied.
Directory traversal
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for TrendMicro Apexone Op or by TrendMicro? Click the Watch button to subscribe.
