Primary

Context

Trend Micro Apex One and Vision One Origin Validation Vulnerability Allowing Local Privilege Escalation

Vulnerability

Patched

A vulnerability allowing local privilege escalation has been identified in the Apex One/SEP agent, affecting Apex One 2019 (on-premise), Apex One as a Service, and TrendAI Vision One Endpoint Security - Standard Endpoint Protection (SEP) on Windows. This vulnerability arises from an origin validation error, which could be exploited by a local attacker with access to low-privileged code on the target system.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation on the affected system.

Remediation

Users of Apex One (on-prem) should update to SP1 CP Build 18012 or SP1 Build 17079. For Apex One as a Service and TrendAI Vision One SEP users, the Security Agent build 14.0.20731 is available. Customers are encouraged to visit the Trend Micro Download Center for more information.

Added: May 21, 2026, 2:42 PM

Updated: May 21, 2026, 2:42 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

10.0

exploitability

3.5

remediation

7.7

relevance

8.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

10.0

exploitability

3.5

remediation

7.7

relevance

8.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Trend Micro Apex One and Vision One Origin Validation Vulnerability Allowing Local Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Trend Micro Apex One

Trend Micro Apex One as a Service

Trend Micro Vision One

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating