user can go after and safe their network with the Home Network Security station , which include exposure rake , trespass bar , menace security , and twist - based admission moderate . Three security fault were key in these twist , let in two mickle buffer outpouring with CVSS tons of 7.8 ( CVE-2021 - 32457 and CVE-2021 - 32458 ) and one CVSS grudge of 4.9 for a hardcoded parole interrogate ( CVE-2021 - 32459 ) . The 1st two flaw are ioctl push-down store - establish cushion brim over , which an assaulter might read reward of by send off peculiarly project ioctl bespeak . Both vulnerability resultant role in perquisite escalation , but the aggressor must first base be able-bodied to perform grim - privileged encrypt on the computing machine . investigator from Talos too hear a hardcoded word weakness in Trend Micro Home Network Security ’s lumber collecting waiter feature film , which could be used for arbitrary authentication by institutionalize a peculiarly designed mesh request . The fact that an assailant must start obtain the power to execute senior high - privileged inscribe on the compromise estimator before being able-bodied to overwork the defect is a extenuate ingredient . “ At this clip , Trend Micro has pick up no reputation of actual onrush against the touch merchandise due to this exposure , ” the companionship sound out . edition 6.6.604 and earlier of Trend Micro Home Network Security are strike . Trend Micro has already resign software package update to sort out the wiretap , which should be usable via the reflexive microcode update litigate on compatible device .