Trend Micro, Tanium, ESET and Tenable Patch Severe Product Vulnerabilities
Cybersecurity companies Trend Micro, ESET, Tenable, and Tanium released product updates this month to patch severe vulnerabilities.
Tenable told customers this week that it has fixed a critical-severity path traversal in the Tenable Agent. The security hole, tracked as CVE-2026-15265, may allow an attacker to achieve remote code execution.
[ Read:SonicWall Issues Urgent SMA Patch Warning for Two Zero-Day Exploits]
ESET informed customers on Tuesday that it has discovered and patched a high-severity local privilege escalation vulnerability in Inspect Connector for Windows.
“On systems with the affected ESET product installed, an attacker could send self-crafted Advanced Local Procedure Call (ALPC) requests to the vulnerable process’ interface,” ESET explained in its advisory. “Without proper authentication or origin validation in place, this message would be accepted and processed, enabling the attacker to access restricted functionality.”
Tanium informed customers last week about a high-severity DoS flaw affecting Tanium Server.
Advertisement. Scroll...
Copyright of this story solely belongs to securityweek.com. To see the full text click HERE