CVE-2022-28339 – Trend Micro HouseCall for Home Networks Uncontrolled Search Path Element Privilege Escalation Vulnerability

https://notcve.org/view.php?id=CVE-2022-28339

12 Apr 2022 — Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled search patch element vulnerability that could allow an attacker with low user privileges to create a malicious DLL that could lead to escalated privileges. This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro HouseCall for Home Networks. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerabil... • https://helpcenter.trendmicro.com/en-us/article/tmka-21734 • CWE-427: Uncontrolled Search Path Element •