CVE-2021-32466

HIGH

Trendmicro Housecall For Home Networks - Uncontrolled Search Path

Title source: rule

Description

An uncontrolled search path element privilege escalation vulnerability in Trend Micro HouseCall for Home Networks version 5.3.1225 and below could allow an attacker to escalate privileges by placing a custom crafted file in a specific directory to load a malicious library. Please note that an attacker must first obtain the ability to execute low-privileged code on the target system to exploit this vulnerability.

References (3)

Scores

CVSS v3 7.0
EPSS 0.0023
EPSS Percentile 45.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-427
Status published

Affected Products (1)

trendmicro/housecall_for_home_networks < 5.3.1225

Timeline

Published Sep 29, 2021
Tracked Since Feb 18, 2026