CVE-2022-28339

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Feb 22, 2025

Updated: Feb 24, 2025

CWE ID 427

Summary

CVE-2022-28339 is a vulnerability affecting Trend Micro HouseCall for Home Networks versions 5.3.1302 and below. This issue involves an uncontrolled search patch element, which can be exploited by attackers with low user privileges. By creating a malicious DLL, they can potentially elevate their privileges, gaining unauthorized access to sensitive information or system functions. This vulnerability poses a significant risk to network security and requires immediate attention from users to update their software to a secure version.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Trend Micro

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/mI7oSE
https://www.cve.org/CVERecord?id=CVE-2022-28339
https://nvd.nist.gov/vuln/detail/CVE-2022-28339

Back to Vulnerability Database

CVE-2022-28339

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations