漏洞平台

POC详情： 80c40fef3ddc54c59d7d36f7aa2a9f2d9db06552

来源

https://github.com/cyberdashy/CVE-2022-30190

关联漏洞

标题： Microsoft Windows Support Diagnostic Tool 操作系统命令注入漏洞 (CVE-2022-30190)
描述：Microsoft Windows Support Diagnostic Tool是美国微软（Microsoft）公司的收集信息以发送给 Microsoft 支持的工具。 Microsoft Windows Support Diagnostic Tool (MSDT)存在操作系统命令注入漏洞。以下产品和版本受到影响：Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows

描述

Mitigation for CVE-2022-30190

介绍

# CVE-2022-30190
Mitigation for CVE-2022-30190

Script requires to be run as Adminstrator. This script has been tested with Connectwise Automate RMM tool for deployment.

I found this solution cleaner than backup up and deleting anything from the registry, as this can simply update the DWORD key value to "1" to return functionality.

Alternatively the script can be modified to find and remove the added registry key.

文件快照


 [4.0K]  /data/pocs/80c40fef3ddc54c59d7d36f7aa2a9f2d9db06552
├── [ 456]  cve-2022-30190.ps1
└── [ 420]  README.md

0 directories, 2 files

神龙机器人已为您缓存

备注

1. 建议优先通过来源进行访问。

2. 如果因为来源失效或无法访问，请发送邮箱到 f.jinxu#gmail.com 索取本地快照（把 # 换成 @）。

3. 神龙已为您对POC代码进行快照，为了长期维护，请考虑为本地POC付费，感谢您的支持。