June 15, 2022 

Microsoft Patches ‘Follina’ 0-Day & 27 RCE Vulnerabilities

As part of June’s monthly security rollup updates, Microsoft has patched the recent ‘Follina‘ 0-Day as well as 27 Remote Code Execution vulnerabilities. 

Overall, Microsoft has patched 55 vulnerabilities across Windows, Azure, Office, SQL Server, Hyper-V, Edge, RVSS, .NET & Visual Studio. 

The 0-Day Vulnerability

• CVE-2022-30190 – ‘Follina’ (CVSS 3.1: 7.8, High Severity) – A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the context allowed by the user’s rights. The vulnerability is actively exploited in the wild. 

For the full patched vulnerabilities list, including the 27 RCEs, visit Microsoft June 2022 Security Updates. 

Mitigation

CYREBRO implementing the latest available Microsoft security/monthly rollup updates in all relevant systems as soon as possible. 

References: Microsoft June 2022 Security Updates.