|
|
|||
| Rule General Information |
|---|
| Release Date: | 2022-06-06 | |
| Rule Name: | Microsoft Windows Support Diagnostic Tool Remote Code Execution Vulnerability (CVE-2022-30190) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | The Microsoft Windows Support Diagnostic Tool is a tool from Microsoft Corporation of the United States that collects information to send to Microsoft Support. An operating system command injection vulnerability exists in the Microsoft Windows Support Diagnostic Tool (MSDT). | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30190 |
|
| Solutions |
|---|
| The vendor has released upgrade patches to fix vulnerabilities, please visit: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30190 |