A new zero-day flaw has been identified within the Microsoft Office suite. On May 30, 2022, security researchers identified a new zero-day flaw in Microsoft Office that could be used to run arbitrary code execution (ACE) on Windows systems. Dubbed “Follina” because the zero-day code references 0438 – the area code of Follina in Italy – the flaw impacts all Windows versions still receiving security updates. Chances are, if you have Microsoft Office, you’re vulnerable. Specific versions affected include: 2021, 2019, 2016 and 2013. We recommend that you apply patches as provided by Microsoft on May 30, 2022. Click the link below to see the Microsoft Security Response Center guidance on this Office vulnerability.
1650 Manheim Pike, Suite 204, Lancaster, PA 17601
(717) 509-4410
INFORMATION TECHNOLOGY SERVICES