Find notable cyber news and cases, enriched with sources, timelines, and signals.

TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926

Security Patch Release
First reported
Last updated
Happening score
H score 45
1 unique sources, 1 articles

Summary

Hide ▲

TrendAI released Apex One security updates after confirming a zero-day had been exploited in the wild, leaving on-premises installations at risk until patched. The update set also fixes several high-severity local privilege-escalation flaws. One issue is tracked as CVE-2026-34926, and CISA added it to the KEV catalog with a June 4 deadline. Administrators should apply the updates and review remote access to critical systems.

Related Happenings

Amazon security patch release for CVE-2026-50549

Security Patch Release
H score29 First: 09.07.2026 14:00 Last: 09.07.2026 14:00 Sources 1

About this happening: **Amazon, Google and Cursor** shipped fixes for **GhostApproval**, a flaw in AI coding assistants that let deceptive repository paths bypass approval prompts. The patch response c...

NHS England Digital libssh2 update advisory for CVE-2026-55200

Advisory/Mitigation
H score38 First: 29.06.2026 10:06 Last: 29.06.2026 10:06 Sources 1

About this happening: **NHS England Digital** has issued an **update advisory** for **libssh2** after a public proof-of-concept surfaced for **CVE-2026-55200**. The flaw can let a **malicious or compro...

Ubiquiti UniFi OS security patch release for CVE-2026-34908/34909/34910

Security Patch Release
H score53 First: 24.06.2026 20:19 Last: 24.06.2026 20:19 Sources 1

About this happening: Ubiquiti released **UniFi OS** patches for **CVE-2026-34908**, **CVE-2026-34909**, and **CVE-2026-34910**, closing three maximum-severity defects tied to **in-the-wild exploitatio...

Dify security patch release for CVE-2026-41947

Security Patch Release
H score34 First: 22.06.2026 19:13 Last: 22.06.2026 19:13 Sources 1

About this happening: **Dify** shipped **version 1.14.2** to fix most of the **DifyTap** vulnerabilities, closing cross-tenant paths that could expose **AI chats**, **uploaded files**, and internal API...

JCE Pro 2.9.99.6 patch for CVE-2026-48907

Security Patch Release
H score46 First: 17.06.2026 13:09 Last: 17.06.2026 13:09 Sources 1

About this happening: **JCE security team** released **JCE Pro 2.9.99.6** in **early June 2026** to fix **CVE-2026-48907** in the **Widget Factory Joomla Content Editor (JCE) plugin**. The update addre...

Timeline

  1. 22.05.2026 11:19 2 articles · 1mo ago

    TrendAI patches Apex One zero-day CVE-2026-34926

    Mitigation Patch Update

    TrendAI said it patched CVE-2026-34926 in Apex One after the zero-day was exploited in the wild. The medium-severity directory traversal flaw affects only the on-premises version, requires admin credentials to the server, and could let an attacker modify a key table and inject malicious code to deploy to agents on affected installations. TrendAI also said its incident response team discovered the vulnerability internally, and CISA added CVE-2026-34926 to the KEV catalog with a June 4 remediation deadline for federal agencies.

    Show sources