Vulnerability — CVE-2022-30190

CVE-2022-30190

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-30190
Description:: <p>A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the context allowed by the user’s rights.</p> <p>Please see the <a href="https://aka.ms/CVE-2022-30190-Guidance">MSRC Blog Entry</a> for important information about steps you can take to protect your system from this vulnerability.</p>
Last updated date:: 12/20/2023

Reports

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 05/27/2022
Reference url to background: https://twitter.com/nao_sec/status/1530196847679401984?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1530196847679401984%7Ctwgr%5E%7Ctwcon%5Es1_&ref_url=https%3A%2F%2Fwww.tenable.com%2Fblog%2Fcve-2022-30190-zero-click-zero-day-in-msdt-exploited-in-the-wild

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 05/30/2022
Reference url to background: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30190

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 06/14/2022
Reference url to background: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30190

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 06/14/2022
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploit
Confidence:: HIGH
Date of publishing:: 03/02/2022
Reference url to background: https://github.com/flux10n/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/30/2022
Reference url to background: https://github.com/JMousqueton/PoC-CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/31/2022
Reference url to background: https://github.com/onecloudemoji/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/31/2022
Reference url to background: https://github.com/ByteCaps/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/31/2022
Reference url to background: https://github.com/bytecaps/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/31/2022
Reference url to background: https://github.com/doocop/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/31/2022
Reference url to background: https://github.com/archanchoudhury/MSDT_CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/31/2022
Reference url to background: https://github.com/sentinelblue/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/31/2022
Reference url to background: https://github.com/trhacknon/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/31/2022
Reference url to background: https://github.com/PaddlingCode/cve-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/01/2022
Reference url to background: https://github.com/dwisiswant0/gollina

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/01/2022
Reference url to background: https://github.com/drgreenthumb93/CVE-2022-30190-follina

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/01/2022
Reference url to background: https://github.com/rouben/CVE-2022-30190-NSIS

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/01/2022
Reference url to background: https://github.com/Cosmo121/Follina-Remediation

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/01/2022
Reference url to background: https://github.com/sudoaza/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/02/2022
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/word_msdtjs_rce.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/02/2022
Reference url to background: https://github.com/gamingwithevets/msdt-disable

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/02/2022
Reference url to background: https://github.com/ErrorNoInternet/FollinaScanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/02/2022
Reference url to background: https://github.com/komomon/CVE-2022-30190-follina-Office-MSDT-Fixed

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/02/2022
Reference url to background: https://github.com/gyaansastra/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/02/2022
Reference url to background: https://github.com/swaiist/CVE-2022-30190-Fix

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/02/2022
Reference url to background: https://github.com/0xflagplz/MS-MSDT-Office-RCE-Follina

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/02/2022
Reference url to background: https://github.com/AchocolatechipPancake/MS-MSDT-Office-RCE-Follina

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/03/2022
Reference url to background: https://github.com/Noxtal/follina

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/03/2022
Reference url to background: https://github.com/SrikeshMaharaj/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/04/2022
Reference url to background: https://github.com/AbdulRKB/Follina

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/04/2022
Reference url to background: https://github.com/DerZiad/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/05/2022
Reference url to background: https://github.com/ItsNee/Folina-CVE-2022-30190-POC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/05/2022
Reference url to background: https://github.com/ItsNee/Follina-CVE-2022-30190-POC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/07/2022
Reference url to background: https://github.com/joshuavanderpoll/CVE-2022-30190

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/07/2022
Reference url to background: https://github.com/dsibilio/follina-spring

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/08/2022
Reference url to background: https://github.com/Malwareman007/Deathnote

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/09/2022
Reference url to background: https://github.com/Hrishikesh7665/Follina_Exploiter_CLI

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/13/2022
Reference url to background: https://github.com/SonicWave21/Follina-CVE-2022-30190-Unofficial-patch

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/15/2022
Reference url to background: https://github.com/MalwareTech/FollinaExtractor

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/25/2022
Reference url to background: https://github.com/ethicalblue/Follina-CVE-2022-30190-Sample

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/29/2022
Reference url to background: https://github.com/Gra3s/CVE-2022-30190-Follina-PowerPoint-Version

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/29/2022
Reference url to background: https://github.com/Gra3s/CVE-2022-30190_EXP_PowerPoint

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/29/2022
Reference url to background: https://github.com/Gra3s/CVE-2022-30190_PowerPoint

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/21/2022
Reference url to background: https://github.com/EkamSinghWalia/Follina-MSDT-Vulnerability-CVE-2022-30190-

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/19/2022
Reference url to background: https://github.com/0xAbbarhSF/FollinaXploit

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/19/2022
Reference url to background: https://github.com/0xStarFord/FollinaXploit

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/14/2023
Reference url to background: https://github.com/aminetitrofine/CVE-2022-30190