An error has been detected in the Windows folder sharing service on servers and workstations. It enables remote code execution on the attacked system and hijacking or encryption of the server.
The problem is serious as it affects all Windows systems in use today (7, 10 and 11, as well as Windows Server 2008 and newer).
For security purposes, you should restrict access to port 445 TCP on edge firewalls. We also suggest limiting shared folders only to the corporate network and VPN – we configure services for our clients in this way.
More information about the issue:
CVE-2022-26809 – Security Update Guide – Microsoft – Remote Procedure Call Runtime Remote Code Execution Vulnerability