CVE-2022-28339

Summary

Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled search patch element vulnerability that could allow an attacker with low user privileges to create a malicious DLL that could lead to escalated privileges.

Affected Software

VendorProductVersion RangeStatus
Trend Micro, Inc.Trend Micro HouseCall for Home Networks5.3 < 5.3.1308affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References