DLL Hijacking Vulnerability in Trend Micro HouseCall for Home Networks
CVE-2021-25247

7.8HIGH

Key Information:

Vendor: Trend Micro
Status: Trend Micro Housecall For Home Networks
Vendor: CVE Published:; 27 January 2021

🔔 Create Trend Micro Vulnerability Alert

What is CVE-2021-25247?

A vulnerability in Trend Micro HouseCall for Home Networks enables attackers with user privileges to utilize a malicious DLL to gain elevated permissions, allowing them to execute arbitrary code on the affected systems. This exploitation could lead to significant security risks, highlighting the need for timely remediation.

Affected Version(s)

Trend Micro HouseCall for Home Networks 5.3.1063 and below

References

https://helpcenter.trendmicro.com/en-us/article/TMKA-10180

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 27, 2021
Vulnerability Reserved
Jan 15, 2021