Trend Micro, Tanium, ESET, and Tenable Patch Critical Product Vulnerabilities
Four major cybersecurity vendors have released patches for severe vulnerabilities affecting their respective products, urging customers to update promptly.

Cybersecurity giants Trend Micro, ESET, Tenable, and Tanium have collectively issued critical updates to address a range of severe vulnerabilities discovered within their product suites. These patches aim to close security gaps that could have exposed users and their systems to significant risks, highlighting the ongoing challenge of securing the very tools designed to protect against threats.
Tenable, a leader in vulnerability management, announced it has resolved a critical path traversal vulnerability (CVE-2026-15265) in its Tenable Agent. This flaw could potentially allow a remote attacker to achieve code execution on affected systems, underscoring the importance of keeping agent software up-to-date.
ESET, known for its antivirus and security solutions, has addressed a high-severity local privilege escalation vulnerability within its Inspect Connector for Windows. The company detailed that an attacker could exploit this by sending specially crafted Advanced Local Procedure Call (ALPC) requests to the vulnerable process, bypassing authentication and gaining elevated access. ESET also noted a separate medium-severity denial-of-service (DoS) vulnerability affecting its Linux security products.
Tanium, a provider of endpoint management and security solutions, has also patched a high-severity DoS flaw impacting its Tanium Server. According to the company's advisory, an unauthenticated attacker with network access could exploit this vulnerability to disrupt the availability of the Tanium Server.
Trend Micro, a prominent cybersecurity vendor, has released a fix for a high-severity local privilege escalation vulnerability affecting its Cleaner One Pro application. This vulnerability could allow an attacker to delete critical Trend Micro files, potentially compromising the integrity of the security software.
While the vendors have stated there is no current evidence of these specific vulnerabilities being exploited in the wild, the cybersecurity landscape frequently sees threat actors targeting security products themselves. This trend is exemplified by recent confirmed exploitation incidents involving products from Palo Alto Networks and Trend Micro, emphasizing the critical need for prompt patching.
The proactive patching by these major cybersecurity vendors demonstrates a commitment to their customers' security. However, it also serves as a stark reminder that even security software can become a target, necessitating continuous vigilance and rapid deployment of updates across all layers of an organization's infrastructure.
Customers of Trend Micro, ESET, Tenable, and Tanium are strongly advised to review the respective vendor advisories and apply the released patches as soon as possible to mitigate the risks associated with these severe security flaws.