An incorrect permission vulnerability in the product installer folders for Trend Micro HouseCall for Home Networks version 5.3.1179 and below could allow an attacker to escalate privileges by placing arbitrary code on a specified folder and have that code be executed by an Administrator who is running a scan. Please note that an attacker must first obtain the ability to execute low-privileged code on the target system to exploit this vulnerability.
References
Link | Resource |
---|---|
https://helpcenter.trendmicro.com/en-us/article/TMKA-10310 | Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-21-475/ | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: trendmicro
Published: 2021-05-12T14:57:42
Updated: 2021-05-12T14:57:42
Reserved: 2021-04-20T00:00:00
Link: CVE-2021-31519
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-12T15:15:07.677
Modified: 2021-05-21T18:23:08.300
Link: CVE-2021-31519
JSON object: View
Redhat Information
No data.
CWE