This month the specially-trained tool team found a potentially dangerous vulnerability called CVE-2022-30190 (Follina) inside the Microsoft Support Diagnostic Tool, that allows remote execution of code within Windows. This vulnerability affects many different versions of Microsoft Office and is largely utilized by hackers. This has made it challenging for Microsoft to release the fix that was released in the update of June for Windows.
Image Source: Pixabay.
This vulnerability is exploited via the basis of a specially-designed document for office use. This issue is applicable to Microsoft Office 2013-2019, Office 2021, Office 365 and Office ProPlus. An attack utilizing Follina vulnerabilities Follina vulnerability is able for stealing malware-infected victims’ identities from devices, to access the data, delete it, and to establish accounts under the terms of the restrictions set by the user currently using. According to the available data there is a significant usage of the vulnerability CVE-2022-30190 has been observed throughout Russia, India, and China.
Since the issue is due to various version and versions of Microsoft Office, users are advised to not delay installing the hotfix that is corresponding the KB5014699 hotfix on Windows 10 and KB5014697 for Windows 11. Microsoft strongly suggests installing updates so that you don’t find out how to secure yourself from the vulnerability. Users who have systems that receive updates automatically should not take any further action.