Watchguard/Panda help for CVE-2022-30190

BerndW

Hello!

I read about „CVE-2022-30190 Microsoft Windows Support Diagnostic Tool (MSDT)„ Problem and I would like to know if there is any support from Watchguard/Panda for this case.

Bernd

BerndW

Hello!

I just read the Sophos article about this incident. Apparently, they have already deposited a detection for their security products. I am absolutely sure that Watchguard/Panda are already working hard on detection and blocking capabilities. Can you give a short status anyway?

Article from Sophos
https://news.sophos.com/en-us/2022/05/30/malicious-word-doc-taps-previously-unknown-microsoft-office-vulnerability/

Aitor_M

Thanks BerndW,

Yes, you are right. Panda/Watchguard EPP/EDR/EPDR are able to detect and block CVE-2022-30190 Microsoft Windows Support Diagnostic Tool (MSDT).

We are working to create a KB explaining how our products detects and block it.

Thanks!

BerndW

Hello Aitor_M!

Great news! Thanks a lot for your support!

Bernd

WG411

Is there detection for CVE-2022-30190 on M300 firewalls?

BerndW

Hello!

I now see the KB entries:

Watchguard KB Article ID :000022644
https://techsearch.watchguard.com/KB?type=Article&SFDCID=kA16S000000JwpKSAS&lang=en_US

Panda KB Help nº- 20220602 100079 EN
https://pandasecurity.com/en/support/card?id=100079