NOMISEC-ITMarcin2211/CVE-2022-30190

NOMISEC WORKING POC

Exploit for CVE-2022-30190 - Microsoft Office Word MSDTJS

AI Analysis

This repository contains a proof-of-concept exploit for CVE-2022-30190 (Follina), a Microsoft Office remote code execution vulnerability. The exploit involves hosting an HTML file and tricking a user into opening a malicious DOCX file, which then executes arbitrary code (e.g., launching calc.exe).

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1204.002 - Malicious File

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type client-side

Files 3

https://github.com/ITMarcin2211/CVE-2022-30190

Stars 1

Forks 0

Last Push Jun 02, 2022

Authors

ITMarcin2211

Vulnerability

CVE-2022-30190

Microsoft Office Word MSDTJS

HIGH KEV

CVSS 7.8