TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926
Security Patch Release
Summary
Hide ▲
Show ▼
TrendAI released Apex One security updates after confirming a zero-day had been exploited in the wild, leaving on-premises installations at risk until patched. The update set also fixes several high-severity local privilege-escalation flaws. One issue is tracked as CVE-2026-34926, and CISA added it to the KEV catalog with a June 4 deadline. Administrators should apply the updates and review remote access to critical systems.
Related Happenings
Amazon security patch release for CVE-2026-50549
Security Patch Release
H score29
First: 09.07.2026 14:00
Last: 09.07.2026 14:00
Sources 1
About this happening:
**Amazon, Google and Cursor** shipped fixes for **GhostApproval**, a flaw in AI coding assistants that let deceptive repository paths bypass approval prompts. The patch response c...
Amazon security patch release for CVE-2026-50549
Security Patch ReleaseAbout this happening: **Amazon, Google and Cursor** shipped fixes for **GhostApproval**, a flaw in AI coding assistants that let deceptive repository paths bypass approval prompts. The patch response c...
NHS England Digital libssh2 update advisory for CVE-2026-55200
Advisory/Mitigation
H score38
First: 29.06.2026 10:06
Last: 29.06.2026 10:06
Sources 1
About this happening:
**NHS England Digital** has issued an **update advisory** for **libssh2** after a public proof-of-concept surfaced for **CVE-2026-55200**. The flaw can let a **malicious or compro...
NHS England Digital libssh2 update advisory for CVE-2026-55200
Advisory/MitigationAbout this happening: **NHS England Digital** has issued an **update advisory** for **libssh2** after a public proof-of-concept surfaced for **CVE-2026-55200**. The flaw can let a **malicious or compro...
Ubiquiti UniFi OS security patch release for CVE-2026-34908/34909/34910
Security Patch Release
H score53
First: 24.06.2026 20:19
Last: 24.06.2026 20:19
Sources 1
About this happening:
Ubiquiti released **UniFi OS** patches for **CVE-2026-34908**, **CVE-2026-34909**, and **CVE-2026-34910**, closing three maximum-severity defects tied to **in-the-wild exploitatio...
Ubiquiti UniFi OS security patch release for CVE-2026-34908/34909/34910
Security Patch ReleaseAbout this happening: Ubiquiti released **UniFi OS** patches for **CVE-2026-34908**, **CVE-2026-34909**, and **CVE-2026-34910**, closing three maximum-severity defects tied to **in-the-wild exploitatio...
Dify security patch release for CVE-2026-41947
Security Patch Release
H score34
First: 22.06.2026 19:13
Last: 22.06.2026 19:13
Sources 1
About this happening:
**Dify** shipped **version 1.14.2** to fix most of the **DifyTap** vulnerabilities, closing cross-tenant paths that could expose **AI chats**, **uploaded files**, and internal API...
Dify security patch release for CVE-2026-41947
Security Patch ReleaseAbout this happening: **Dify** shipped **version 1.14.2** to fix most of the **DifyTap** vulnerabilities, closing cross-tenant paths that could expose **AI chats**, **uploaded files**, and internal API...
JCE Pro 2.9.99.6 patch for CVE-2026-48907
Security Patch Release
H score46
First: 17.06.2026 13:09
Last: 17.06.2026 13:09
Sources 1
About this happening:
**JCE security team** released **JCE Pro 2.9.99.6** in **early June 2026** to fix **CVE-2026-48907** in the **Widget Factory Joomla Content Editor (JCE) plugin**. The update addre...
JCE Pro 2.9.99.6 patch for CVE-2026-48907
Security Patch ReleaseAbout this happening: **JCE security team** released **JCE Pro 2.9.99.6** in **early June 2026** to fix **CVE-2026-48907** in the **Widget Factory Joomla Content Editor (JCE) plugin**. The update addre...
Timeline
-
22.05.2026 11:19 2 articles · 1mo ago
TrendAI patches Apex One zero-day CVE-2026-34926
Mitigation Patch UpdateTrendAI said it patched CVE-2026-34926 in Apex One after the zero-day was exploited in the wild. The medium-severity directory traversal flaw affects only the on-premises version, requires admin credentials to the server, and could let an attacker modify a key table and inject malicious code to deploy to agents on affected installations. TrendAI also said its incident response team discovered the vulnerability internally, and CISA added CVE-2026-34926 to the KEV catalog with a June 4 remediation deadline for federal agencies.
Show sources
- TrendAI Patches Apex One Zero-Day Exploited in the Wild — www.securityweek.com — 22.05.2026 11:19
- TrendAI Patches Apex One Zero-Day Exploited in the Wild — www.securityweek.com — 22.05.2026 11:19