NOMISEC-joshuavanderpoll/CVE-2022-30190

NOMISEC WORKING POC
Exploit for CVE-2022-30190 - Microsoft Office Word MSDTJS
AI Analysis

This PoC generates a malicious Word document and HTML file exploiting CVE-2022-30190 (Follina) to achieve remote code execution via the Microsoft Support Diagnostic Tool (MSDT). The exploit leverages a crafted URL scheme to execute PowerShell commands or download/execute payloads.

Attack Type
RCE
Complexity
moderate
Reliability
reliable
MITRE ATT&CK
T1204.002 - Malicious File T1195.002 - Compromise Software Supply Chain T1059.001 - PowerShell
Loading exploit code...
Download ZIP Password: eip
Source
Platform Nomisec
Type poc
Files 14
Stars 1
Forks 1
Last Push Jun 07, 2022
Authors
joshuavanderpoll
Vulnerability
CVE-2022-30190
Microsoft Office Word MSDTJS
HIGH KEV
CVSS 7.8