Lucene search

Exploit for Externally Controlled Reference to a Resource in Another Sphere in Microsoft

🗓️ 28 Nov 2023 03:32:47Type

An attack chain implementing Externally Controlled Reference to a Resource in Another Sphere in Microsoft Word using CVE-2022-30190, 163 email backdoor, and image steganography. Integration of gdog and follina code with usage instructions and remarks

Reporter	Title	Published	Views	Family All 199
CNVD	Microsoft Support Diagnostic Tool Remote Code Execution Vulnerability	31 May 202200:00	–	cnvd
Malwarebytes	Woody RAT: A new feature-rich malware spotted in the wild	3 Aug 202221:00	–	malwarebytes
Malwarebytes	Woody RAT: A new feature-rich malware spotted in the wild	3 Aug 202221:25	–	malwarebytes
Malwarebytes	FAQ: Mitigating Microsoft Office’s ‘Follina’ zero-day	1 Jun 202216:36	–	malwarebytes
Malwarebytes	Microsoft Office zero-day “Follina”—it’s not a bug, it’s a feature! (It’s a bug)	30 May 202218:09	–	malwarebytes
Malwarebytes	Russia’s APT28 uses fear of nuclear war to spread Follina docs in Ukraine	21 Jun 202215:25	–	malwarebytes
Malwarebytes	Update now! Microsoft patches Follina, and many other security updates	15 Jun 202213:17	–	malwarebytes
Malwarebytes	2022's most routinely exploited vulnerabilities—history repeats	7 Aug 202318:30	–	malwarebytes
Microsoft Security Response Center	CVE-2022-30190 マイクロソフトサポート診断ツールの脆弱性に関するガイダンス	30 May 202207:00	–	msrc
Microsoft Security Response Center	Guidance for CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability	30 May 202207:00	–	msrc

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Nov 2023 03:47Current

8.5High risk

Vulners AI Score8.5

CVSS29.3

CVSS37.8

EPSS0.07799