Trendmicro Housecall For Home Networks vulnerabilities

CVE-2022-28339 [HIGH] CWE-427 CVE-2022-28339: Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled search p Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled search patch element vulnerability that could allow an attacker with low user privileges to create a malicious DLL that could lead to escalated privileges.

CVE-2021-32466 [HIGH] CWE-427 CVE-2021-32466: An uncontrolled search path element privilege escalation vulnerability in Trend Micro HouseCall for An uncontrolled search path element privilege escalation vulnerability in Trend Micro HouseCall for Home Networks version 5.3.1225 and below could allow an attacker to escalate privileges by placing a custom crafted file in a specific directory to load a malicious library. Please note that an attacker must first obtain the ability to execute low-privil

CVE-2021-31519 [HIGH] CWE-276 CVE-2021-31519: An incorrect permission vulnerability in the product installer folders for Trend Micro HouseCall for An incorrect permission vulnerability in the product installer folders for Trend Micro HouseCall for Home Networks version 5.3.1179 and below could allow an attacker to escalate privileges by placing arbitrary code on a specified folder and have that code be executed by an Administrator who is running a scan. Please note that an attacker must first ob

CVE-2021-28649 [HIGH] CWE-276 CVE-2021-28649: An incorrect permission vulnerability in the product installer for Trend Micro HouseCall for Home Ne An incorrect permission vulnerability in the product installer for Trend Micro HouseCall for Home Networks version 5.3.1179 and below could allow an attacker to escalate privileges by placing arbitrary code on a specified folder and have that code be executed by an Administrator who is running a scan. Please note that an attacker must first obtain the

CVE-2021-25247 [HIGH] CWE-427 CVE-2021-25247: A DLL hijacking vulnerability Trend Micro HouseCall for Home Networks version 5.3.1063 and below cou A DLL hijacking vulnerability Trend Micro HouseCall for Home Networks version 5.3.1063 and below could allow an attacker to use a malicious DLL to escalate privileges and perform arbitrary code execution. An attacker must already have user privileges on the machine to exploit this vulnerability.

CVE-2019-19688 [HIGH] CVE-2019-19688: A privilege escalation vulnerability in Trend Micro HouseCall for Home Networks (versions below 5.3. A privilege escalation vulnerability in Trend Micro HouseCall for Home Networks (versions below 5.3.0.1063) could be exploited allowing an attacker to place a malicious DLL file into the application directory and elevate privileges.

CVE-2019-19689 [HIGH] CWE-427 CVE-2019-19689: Trend Micro HouseCall for Home Networks (versions below 5.3.0.1063) could be exploited via a DLL Hij Trend Micro HouseCall for Home Networks (versions below 5.3.0.1063) could be exploited via a DLL Hijack related to a vulnerability on the packer that the program uses.