CVE-2022-28339

N/A

Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled search patch element vulnerability that could allow an attacker with low user privileges to create a malicious DLL that could lead to escalated privileges.

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

N/A

Trend Micro HouseCall for Home Networks 代码问题漏洞

Trend Micro HouseCall for Home Networks是美国趋势科技（Trend Micro）公司的一套家庭网络安全扫描软件。该软件支持扫描多种家庭网络设备并识别网络风险。 Trend Micro HouseCall for Home Networks 存在代码问题漏洞，该漏洞源于应用程序以不安全的方式加载.dll库。本地攻击者可以将恶意.dll文件放在系统上的特定目录中，并提升的权限从而执行任意代码。

N/A

N/A