Login
    Contents x
    Pharos response to Microsoft Support Diagnostic Tool (MSDT) vulnerability (CVE-2022-30190) - June 2022
    • 05 Apr 2024
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    Pharos response to Microsoft Support Diagnostic Tool (MSDT) vulnerability (CVE-2022-30190) - June 2022

    • Updated on 05 Apr 2024
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Article summary

    Background:

    Recently Microsoft announced a new vulnerability (CVE-2022-30190) relating to the Microsoft Support Diagnostic Tool (MSDT). A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application.

    Pharos response:

    Pharos has updated our Group Policy to disable the use of Microsoft Troubleshooting tools until a patch has been released by Microsoft and applied to all necessary company assets.

    Pharos recommendation:

    Pharos recommends that Blueprint and Uniprint customers update their Group Policy to disable the use of Microsoft Troubleshooting tools until a patch has been released by Microsoft and apply to all necessary workstations.

    Was this article helpful?
    Related articles
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout