CVE-2021-32466
N/A
N/A
Summary
An uncontrolled search path element privilege escalation vulnerability in Trend Micro HouseCall for Home Networks version 5.3.1225 and below could allow an attacker to escalate privileges by placing a custom crafted file in a specific directory to load a malicious library. Please note that an attacker must first obtain the ability to execute low-privileged code on the target system to exploit this vulnerability.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Trend Micro | Trend Micro HouseCall for Home Networks | 5.3.1225 and below | affected |
Weaknesses
- CWE-427: CWE-427: Uncontrolled Search Path Element
ADP Enrichment
CVE Program Container
Additional References
- https://helpcenter.trendmicro.com/en-us/article/tmka-10626
- https://helpcenter.trendmicro.com/ja-jp/article/TMKA-10621
- https://www.zerodayinitiative.com/advisories/ZDI-21-1112/
References
- https://helpcenter.trendmicro.com/en-us/article/tmka-10626
- https://helpcenter.trendmicro.com/ja-jp/article/TMKA-10621
- https://www.zerodayinitiative.com/advisories/ZDI-21-1112/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.