Jun 2022: Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
CVE-2022-30190 Published on June 1, 2022
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the context allowed by the users rights.
Please see the MSRC Blog Entry for important information about steps you can take to protect your system from this vulnerability.
Known Exploited Vulnerability
This Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run code with the privileges of the calling application.
The following remediation steps are recommended / required by July 5, 2022: Apply updates per vendor instructions.
Products Associated with CVE-2022-30190
Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.
Affected Versions
Microsoft Windows 10 Version 1809:- Version 10.0.17763.0 and below 10.0.17763.3046 is affected.
- Version 10.0.0 and below 10.0.17763.3046 is affected.
- Version 10.0.17763.0 and below 10.0.17763.3046 is affected.
- Version 10.0.17763.0 and below 10.0.17763.3046 is affected.
- Version 10.0.0 and below 10.0.19043.1766 is affected.
- Version 10.0.20348.0 and below 10.0.20348.770 is affected.
- Version 10.0.0 and below 10.0.19042.1766 is affected.
- Version 10.0.0 and below 10.0.19042.1766 is affected.
- Version 10.0.0 and below 10.0.22000.739 is affected.
- Version 10.0.19043.0 and below 10.0.19044.1766 is affected.
- Version 10.0.10240.0 and below 10.0.10240.19325 is affected.
- Version 10.0.14393.0 and below 10.0.14393.5192 is affected.
- Version 10.0.14393.0 and below 10.0.14393.5192 is affected.
- Version 10.0.14393.0 and below 10.0.14393.5192 is affected.
- Version 6.1.0 and below 6.1.7601.25984 is affected.
- Version 6.1.0 and below 6.1.7601.25984 is affected.
- Version 6.3.0 and below 6.3.9600.20402 is affected.
- Version 6.1.7601.0 and below 6.1.7601.25984 is affected.
- Version 6.1.7601.0 and below 6.1.7601.25984 is affected.
- Version 6.2.9200.0 and below 6.2.9200.23736 is affected.
- Version 6.2.9200.0 and below 6.2.9200.23736 is affected.
- Version 6.3.9600.0 and below 6.3.9600.20402 is affected.
- Version 6.3.9600.0 and below 6.3.9600.20402 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.