CVE-2021-36741 added to CISA KEV: Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security

Status: ✅ Confirmed exploited in the wild

Date added: 2021-11-03

Required action: Apply updates per vendor instructions.

Due date: 2021-11-17

Why this matters

Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security contain an improper input validation vulnerability that allows a remote attacker to upload files.

Sources

CISA KEV catalog entry
NVD detail page
MITRE CVE record

Lyrie Verdict

Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.

#trend-micro #apex-one-apex-one-as-a-service-and-worry-free-business-security #cisa-kev #exploited-itw

Validated sources

[1]CISA Known Exploited Vulnerabilities Catalog
[2]NVD entry
[3]MITRE CVE record