You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
msdt vulnerability
About this tag
The msdt vulnerability tag covers discussions about the Microsoft Support Diagnostic Tool (MSDT) remote code execution flaw, formally tracked as CVE-2022-30190. This vulnerability allows an attacker to run arbitrary code with the privileges of the calling application when MSDT is invoked via a URL protocol from programs like Word. Exploitation could enable attackers to install programs, view or alter data, or create new accounts. The tag includes guidance from Microsoft on mitigating the risk, such as disabling the MSDT URL protocol. Users seeking information on this specific security issue, its impact, and recommended fixes will find relevant threads under this tag.
On Monday May 30, 2022, Microsoft issued CVE-2022-30190 regarding the Microsoft Support Diagnostic Tool (MSDT) in Windows vulnerability.
A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully...