CVE-2026-45206
Undergoing Analysis Undergoing Analysis - In Progress
Privilege Escalation in Apex One/SEP Agent

Publication date: 2026-05-21

Last updated on: 2026-05-22

Assigner: Trend Micro, Inc.

Description
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-45207 but exists in a different process protection communication mechanism. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-21
Last Modified
2026-05-22
Generated
2026-06-10
AI Q&A
2026-05-21
EPSS Evaluated
2026-06-09
NVD
CVE-2026-45206
EUVD
EUVD-2026-31278
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
trendmicro apex_one to 14.0.20731 (exc)
trendmicro apex_one to 14.0.0.17079 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-346 The product does not properly verify that the source of data or communication is valid.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Mitigation Strategies

To mitigate this vulnerability, ensure that you have updated to the latest versions of Apex One (on-premise) and Apex One as a Service, as well as Vision One - Standard Endpoint Protection (SEP), as released by Trend Micro.

Since exploitation requires prior ability to execute low-privileged code, restricting local code execution and applying principle of least privilege can help reduce risk.

Executive Summary

This vulnerability is an origin validation flaw in the Apex One/SEP agent that could allow a local attacker to escalate their privileges on affected systems. It requires the attacker to already have the ability to execute low-privileged code on the target system. The issue is related to a process protection communication mechanism and is similar to another vulnerability identified as CVE-2026-45207.

Impact Analysis

If exploited, this vulnerability could allow an attacker with limited access to escalate their privileges, potentially gaining higher-level control over the affected system. This could lead to unauthorized access, modification, or disruption of system operations.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-45206. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart