Wednesday, June 1, 2022

Microsoft issued CVE-2022-30190 - a zero-day remote code execution vulnerability in the Microsoft Support Diagnostic Tool.

Follina (CVE-2022-30190): a vulnerability in MSDT

 

There are workaround by using ENS Access Protection rules to against this vulnerability:

https://community.mcafee.com/t5/Endpoint-Security-ENS/CVE-2022-30190-Microsoft-Support-Diagnostic-Tool-Vulnerability/td-p/704193

 

The sample configuration of access protection:

https://community.mcafee.com/t5/Endpoint-Security-ENS/CVE-2022-30190-follina/m-p/704208

 

Print Friendly and PDF
Share/Bookmark
Posted by Billy Fung at 9:02 PM
Labels: , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)