Published: 15/06/2022 Updated: 20/12/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Windows Installer Elevation of Privilege Vulnerability

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows server 2008 r2
microsoft windows server 2012 r2
microsoft windows 10 1607
microsoft windows 8.1 -
microsoft windows server 2016 -
microsoft windows server 2008 -
microsoft windows 7 -
microsoft windows rt 8.1 -
microsoft windows server 2012 -
microsoft windows 10 -
microsoft windows server 2019 -
microsoft windows 10 1809
microsoft windows 10 20h2
microsoft windows 10 21h1
microsoft windows server 2022 -
microsoft windows 11 -
microsoft windows 10 21h2

Microsoft fixes under-attack Windows zero-day Follina

The Register • Jessica Lyons Hardcastle • 01 Jan 1970

Topics Security Off-Prem On-Prem Software Offbeat Vendor Voice Vendor Voice Resources Plus: Intel, AMD react to Hertzbleed data-leaking holes in CPUs

Patch Tuesday Microsoft claims to have finally fixed the Follina zero-day flaw in Windows as part of its June Patch Tuesday batch, which included security updates to address 55 vulnerabilities. Follina, eventually acknowledged by Redmond in a security advisory last month, is the most significant of the bunch as it has already been exploited in the wild. Criminals and snoops can abuse the remote code execution (RCE) bug, tracked as CVE-2022-30190, by crafting a file, such as a Word document, so t...

CVE-2022-30147

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect