Lucene search

K
cisaCISACISA:F30D0D7B72453DC3FC64D2AC1AA31F33
HistoryMay 31, 2022 - 12:00 a.m.

Microsoft Releases Workaround Guidance for MSDT "Follina" Vulnerability

2022-05-3100:00:00
us-cert.cisa.gov
148
microsoft
workaround
cve-2022-30190
follina
rce
vulnerability
msdt
windows
exploitation
cisa
administrators
privacy policy
product survey

EPSS

0.964

Percentile

99.6%

Microsoft has released workaround guidance to address a remote code execution (RCE) vulnerability—CVE-2022-30190, known as “Follina”—affecting the Microsoft Support Diagnostic Tool (MSDT) in Windows. A remote, unauthenticated attacker could exploit this vulnerability to take control of an affected system. Microsoft has reported active exploitation of this vulnerability in the wild.

CISA urges users and administrators to review Microsoft’s Guidance for CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability and apply the necessary workaround.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts.

We recently updated our anonymous product survey; we’d welcome your feedback.