I have written about this Microsoft Word vulnerability earlier this week:
There is still not patch – but Microsoft has issued some mitigation guidance:
The vulnerability is already being exploited by a number of state-backed threat actors, according to reports.
Further Reading
Microsoft Releases Workaround Guidance for MSDT “Follina” Vulnerability | CISA