CVE-2022-30190 — HIGH (7.8)

Q: How severe is CVE-2022-30190?

CVE-2022-30190 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-30190?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 10 1507, Microsoft Windows 10 1607, Microsoft Windows 10 1809, Microsoft Windows 10 20H2, Microsoft Windows 10 21H1.

Vulnerability Description

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the context allowed by the user’s rights. Please see the MSRC Blog Entry for important information about steps you can take to protect your system from this vulnerability.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Microsoft	Windows 10 1507	< 10.0.10240.19325
Microsoft	Windows 10 1607	< 10.0.14393.5192
Microsoft	Windows 10 1809	< 10.0.17763.3046
Microsoft	Windows 10 20H2	< 10.0.19042.1766
Microsoft	Windows 10 21H1	< 10.0.19043.1766
Microsoft	Windows 10 21H2	< 10.0.19044.1766
Microsoft	Windows 11 21H2	< 10.0.22000.739
Microsoft	Windows 7	-
Microsoft	Windows 8.1	-
Microsoft	Windows Rt 8.1	-
Microsoft	Windows Server 2008	r2
Microsoft	Windows Server 2012	-
Microsoft	Windows Server 2016	< 10.0.14393.5192
Microsoft	Windows Server 2019	< 10.0.17763.3046
Microsoft	Windows Server 2022	< 10.0.20348.770
Microsoft	Windows Server 20H2	< 10.0.19042.1766

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30190Vendor Advisory
http://packetstormsecurity.com/files/167438/Microsoft-Office-Word-MSDTJS-Code-ExExploitThird Party AdvisoryVDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-3019PatchVendor Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-US Government Resource

FAQ

What is CVE-2022-30190?

CVE-2022-30190 is a vulnerability with a CVSS score of 7.8 (HIGH). A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitr...

How severe is CVE-2022-30190?

CVE-2022-30190 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-30190?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 10 1507, Microsoft Windows 10 1607, Microsoft Windows 10 1809, Microsoft Windows 10 20H2, Microsoft Windows 10 21H1.