CVE-2022-30136: Microsoft Windows Network File System v4 Remote Code Execution Vulnerability


Log4J/Shell part 2: Electric Boogaloo

This bug was patched by Microsoft in June 2022 and assigned
CVE-2022-30136. In their write-up, they also list disabling NFSv4.1 as a
method to mitigate attacks. However, this could lead to a loss of
functionality. Also, Microsoft notes the update to address this bug
should not be applied unless the fix for CVE-2022-26937 is
installed. Applying both updates in the appropriate order is the best
method to fully address these vulnerabilities.

I hope this means we don’t have to do shit tomorrow

Man all we will do is talk about it

Pain, Disaster, Shit, Fxxk

really nice artiche