General Advisory: Windows RCE Vulnerability

Microsoft has released details and workarounds for a remote code execution vulnerability in Windows being tracked as CVE-2022-30190.

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application.

This vulnerability is known to be exploited in the wild.

System administrators are urged to review the guidance and apply mitigations to avoid potential exploitation.

Important links:

Guidance for CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability