← Voltar para CVEs
CVE-2022-28339
HIGH7.3
Descricao
Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled search patch element vulnerability that could allow an attacker with low user privileges to create a malicious DLL that could lead to escalated privileges.
Detalhes CVE
Pontuacao CVSS v3.17.3
SeveridadeHIGH
Vetor CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Vetor de ataqueLOCAL
ComplexidadeLOW
Privilegios necessariosLOW
Interacao do usuarioREQUIRED
Publicado2/22/2025
Ultima modificacao7/29/2025
Fontenvd
Avistamentos honeypot0
Produtos afetados
microsoft:windowstrendmicro:housecall_for_home_networks
Fraquezas (CWE)
CWE-427
Referencias
https://helpcenter.trendmicro.com/en-us/article/tmka-21734(security@trendmicro.com)
https://www.zerodayinitiative.com/advisories/ZDI-22-620/(security@trendmicro.com)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.