CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-32459

Trend Micro Home Network Security version 6.6.604 and earlier contains a hard-coded password vulnerability in the log collection server which could allow an attacker to use a specially crafted network request to lead to arbitrary authentication. An attacker must first obtain the ability to execute high-privileged code on the target device in order to exploit this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.3%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 5.5

References

https://helpcenter.trendmicro.com/en-us/article/TMKA-10337
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1241
https://helpcenter.trendmicro.com/en-us/article/TMKA-10337
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1241

Products affected by CVE-2021-32459

Trendmicro » Home Network Security » Version: Any

cpe:2.3:a:trendmicro:home_network_security:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-32459

Products

Pricing

Contact Us