CVE-2022-34713 - Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability

Vulnerability Name

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability

Description

A remote code execution vulnerability exists when Microsoft Windows MSDT is called using the URL protocol from a calling application.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34713

https://nvd.nist.gov/vuln/detail/CVE-2022-34713