Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4540693
HistoryMar 10, 2020 - 7:00 a.m.

March 10, 2020—KB4540693 (OS Build 10240.18519)

2020-03-1007:00:00
Microsoft
support.microsoft.com
59

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.54 Medium

EPSS

Percentile

97.6%

JSON

March 10, 2020—KB4540693 (OS Build 10240.18519)

For more information about the various types of Windows updates, such as critical, security, driver, service packs, and so on, please see the following article.

Highlights

  • Updates an issue that might prevent icons and cursors from appearing as expected.
  • Updates to improve security when using Microsoft Office products.
  • Updates to improve security when using Microsoft Edge and Internet Explorer.
  • Updates for verifying user names and passwords.
  • Updates for storing and managing files.
  • Updates to improve security when Windows performs basic operations.
  • Updates to improve security when using external devices (such as game controllers, printers, and web cameras).

Improvements and fixes

This security update includes quality improvements. Key changes include:

  • Addresses an issue that might cause Microsoft browsers to bypass proxy servers.
  • Addresses an issue that might prevent icons and cursors from appearing as expected.
  • Security updates to the Microsoft Scripting Engine, Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Media, Windows Silicon Platform, Microsoft Edge, Internet Explorer, Windows Fundamentals, Windows Authentication, Windows Cryptography, Windows Kernel, Windows Core Networking, Windows Storage and Filesystems, Windows Peripherals, Windows Network Security and Containers, and Windows Server.
    If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.For more information about the resolved security vulnerabilities, please refer to the Security Update Guide.

Windows Update ImprovementsMicrosoft has released an update directly to the Windows Update client to improve reliability. Any device running Windows 10 configured to receive updates automatically from Windows Update, including Enterprise and Pro editions, will be offered the latest Windows 10 feature update based on device compatibility and Windows Update for Business deferral policy. This doesn’t apply to long-term servicing editions.

Known issues in this update

Symptom Workaround
Devices on a domain might be unable to install apps published using a Group Policy Object (GPO). This issue only affects app installations that use .msi files. It does not affect any other installation methods, such as from the Microsoft Store. This issue is resolved in KB4556826.

How to get this update

Before installing this updateMicrosoft strongly recommends that you install the latest servicing stack update (SSU) for your operating system before installing the latest cumulative update (LCU). SSUs improve the reliability of the update process to mitigate potential issues while installing the LCU and applying Microsoft security fixes. For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.If you are using Windows Update, the latest SSU (KB4540721) will be offered to you automatically. To get the standalone package for the latest SSU, search for it in the Microsoft Update Catalog.Install this update****Release Channel Available Next Step
Windows Update and Microsoft Update Yes None. This update will be downloaded and installed automatically from Windows Update.
Microsoft Update Catalog Yes To get the standalone package for this update, go to the Microsoft Update Catalog website.
Windows Server Update Services (WSUS) Yes This update will automatically sync with WSUS if you configure Products and Classifications as follows:Product: Windows 10Classification: Security Updates File informationFor a list of the files that are provided in this update, download the file information for cumulative update 4540693.

Related

nessus 12
mskb 15
openvas 8
kaspersky 3
veracode 5
osv 22
github 12
cve 59
prion 58
avleonov 1
qualysblog 1
threatpost 2
thn 1
nessus
nessus
KB4541505: Windows 8.1 and Windows Server 2012 R2 March 2020 Security Update
2020-03-10 00:00:00
KB4540693: Windows 10 March 2020 Security Update
2020-03-10 00:00:00
KB4541500: Windows 7 and Windows Server 2008 R2 March 2020 Security Update
2020-03-24 00:00:00
mskb
mskb
March 10, 2020—KB4541505 (Security-only update)
2020-03-10 07:00:00
March 10, 2020—KB4541509 (Monthly Rollup)
2020-03-10 07:00:00
March 10, 2020—KB4540694 (Security-only update)
2020-03-10 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4541509)
2020-03-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4540693)
2020-03-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4540688)
2020-03-11 00:00:00
kaspersky
kaspersky
KLA11692 Multiple vulnerabilities in Microsoft products (ESU)
2020-03-10 00:00:00
KLA11689 Multiple vulnerabilities in Microsoft Windows
2020-03-10 00:00:00
KLA11681 Multiple vulnerabilities in Microsoft Browser
2020-03-10 00:00:00
veracode
veracode
Remote Code Execution
2020-03-13 06:39:10
Denial Of Service (DoS)
2021-07-29 07:59:16
Remote Code Execution (RCE)
2021-07-29 12:30:43
osv
osv
CVE-2020-0826
2020-03-12 16:15:17
CVE-2020-0848
2020-03-12 16:15:18
Out-of-bounds write in ChakraCore
2021-08-02 17:26:23
github
github
Out-of-bounds Write in ChakraCore
2021-07-28 18:58:14
Out-of-bounds write in ChakraCore
2021-07-28 18:58:03
Out-of-bounds write in ChakraCore
2021-07-28 18:57:55
cve
cve
CVE-2020-0828
2020-03-12 16:15:00
CVE-2020-0864
2020-03-12 16:15:00
CVE-2020-0823
2020-03-12 16:15:00
prion
prion
Privilege escalation
2020-03-12 16:15:00
Privilege escalation
2020-03-12 16:15:00
Remote code execution
2020-03-12 16:15:00
avleonov
avleonov
Microsoft Patch Tuesday March 2020: a new record was set, SMBv3 “Wormable” RCE and updates for February goldies
2020-03-22 01:15:34
qualysblog
qualysblog
March 2020 Patch Tuesday – 115 Vulns, 26 Critical, Microsoft Word and Workstation Patches
2020-03-10 19:07:42
threatpost
threatpost
Microsoft Patches 26 Critical Bugs in Big March Update
2020-03-10 21:19:39
Microsoft Patches 26 Critical Bugs in Big March Update
2020-03-10 21:19:39
thn
thn
Microsoft Issues March 2020 Updates to Patch 115 Security Flaws
2020-03-11 08:31:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.54 Medium

EPSS

Percentile

97.6%

JSON
Related for KB4540693
nessus12mskb15openvas8kaspersky3veracode5osv22github12cve59prion58avleonov1qualysblog1threatpost2thn1