Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-28339

Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled search patch element vulnerability that could allow an attacker with low user privileges to create a malicious DLL that could lead to escalated privileges.

Published

2025-02-22T21:15:34.723

Last Modified

2025-07-29T20:41:48.180

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.3 (HIGH)

Weaknesses

Type: Secondary
CWE-427

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	trendmicro	housecall_for_home_networks	< 5.3.1308	Yes
Operating System	microsoft	windows	-	No

References

https://helpcenter.trendmicro.com/en-us/article/tmka-21734 Vendor Advisory ([email protected])
https://www.zerodayinitiative.com/advisories/ZDI-22-620/ Third Party Advisory ([email protected])