Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB5010456
HistoryFeb 08, 2022 - 8:00 a.m.

February 8, 2022— KB5010456 (OS Build 20348.525)

2022-02-0808:00:00
Microsoft
support.microsoft.com
116

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.4 Medium

EPSS

Percentile

97.2%

JSON

February 8, 2022— KB5010456 (OS Build 20348.525)

Improvements and fixes

  • This update contains miscellaneous security improvements to internal OS functionality. No additional issues were documented for this release.
    If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

How to get this update

Before installing this update

Microsoft now combines the latest servicing stack update (SSU) for your operating system with the hotpatch update. For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.If you are using Windows Update or Windows Server Update Services (WSUS), the latest SSU will be installed with this update.

Install this update

Release Channel Available Next Step
Windows Update Yes None. This update will be downloaded and installed automatically from Windows Update.
Microsoft Update Catalog No To get the standalone package for this update, go to the Microsoft Update Catalog website.
Windows Server Update Services (WSUS) Yes This update will automatically sync with WSUS if you configure Products and Classifications as follows:Product: Windows Server 2022 Datacenter: Azure Edition HotpatchClassification: Security Updates

File information

For a list of the files that are provided in this update, download the file information for cumulative update 5010456.For a list of the files that are provided in the servicing stack update, download the file information for the SSU - version 20348.495.

Related

nessus 11
mskb 15
openvas 7
kaspersky 2
avleonov 1
zdt 1
metasploit 1
packetstorm 1
threatpost 1
rapid7blog 3
qualysblog 1
checkpoint_advisories 6
prion 21
mscve 21
cve 21
zdi 1
githubexploit 5
veracode 1
attackerkb 3
cisa_kev 3
hivepro 1
alpinelinux 1
thn 3
malwarebytes 3
krebs 1
nessus
nessus
KB5010354: Windows Server 2022 Security Update (February 2022)
2022-02-08 00:00:00
KB5010345: Windows 10 version 1909 Security Update (February 2022)
2022-02-08 00:00:00
KB5010342: Windows 10 Version 20H2 / 21H1 / 21H2 Security Update (February 2022)
2022-02-08 00:00:00
mskb
mskb
February 8, 2022—KB5010354 (OS Build 20348.524)
2022-02-08 08:00:00
February 8, 2022—KB5010342 (OS Builds 19042.1526, 19043.1526, and 19044.1526)
2022-02-08 08:00:00
February 8, 2022—KB5010345 (OS Build 18363.2094)
2022-02-08 08:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5010345)
2022-02-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5010351)
2022-02-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5010386)
2023-08-07 00:00:00
kaspersky
kaspersky
KLA12458 Multiple vulnerabilities in Microsoft Products (ESU)
2022-02-08 00:00:00
KLA12457 Multiple vulnerabilities in Microsoft Windows
2022-02-08 00:00:00
avleonov
avleonov
Microsoft Patch Tuesday February 2022
2022-02-28 20:52:10
zdt
zdt
Windows SpoolFool Privilege Escalation Exploit
2022-03-17 00:00:00
metasploit
metasploit
CVE-2022-21999 SpoolFool Privesc
2022-03-10 23:02:58
packetstorm
packetstorm
Windows SpoolFool Privilege Escalation
2022-03-16 00:00:00
threatpost
threatpost
No Critical Bugs for Microsoft February 2022 Patch Tuesday, 1 Zero-Day
2022-02-08 20:24:17
rapid7blog
rapid7blog
Patch Tuesday - February 2022
2022-02-08 20:43:40
Metasploit Weekly Wrap-Up
2022-03-18 17:38:38
Announcing Metasploit 6.2
2022-06-09 16:39:00
qualysblog
qualysblog
Microsoft & Adobe Patch Tuesday (February 2022) – Microsoft 70 Vulnerabilities with 0 Critical; Adobe 17 Vulnerabilities with 5 Critical
2022-02-08 22:35:12
checkpoint_advisories
checkpoint_advisories
Microsoft Named Pipe File System Elevation of Privilege (CVE-2022-22715)
2022-02-08 00:00:00
Microsoft Windows DWM Core Library Elevation of Privilege (CVE-2022-21994)
2022-02-08 00:00:00
Microsoft Windows Print Spooler Elevation of Privilege (CVE-2022-22718)
2022-02-08 00:00:00
prion
prion
Remote code execution
2022-02-09 17:15:00
Denial of service
2022-02-09 17:15:00
Remote code execution
2022-02-09 17:15:00
mscve
mscve
Windows DNS Server Remote Code Execution Vulnerability
2022-02-08 08:00:00
Windows User Account Profile Picture Denial of Service Vulnerability
2022-02-08 08:00:00
Windows Hyper-V Remote Code Execution Vulnerability
2022-02-08 08:00:00
cve
cve
CVE-2022-21994
2022-02-09 17:15:00
CVE-2022-21984
2022-02-09 17:15:00
CVE-2022-21995
2022-02-09 17:15:00
zdi
zdi
Microsoft Windows User Profile Picture Link Following Denial-of-Service Vulnerability
2022-02-11 00:00:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2022-05-22 13:20:39
Exploit for Access of Uninitialized Pointer in Microsoft
2022-04-15 09:14:22
Exploit for Access of Uninitialized Pointer in Microsoft
2022-02-26 20:37:42
veracode
veracode
Denial Of Service (DoS)
2022-07-06 17:44:09
attackerkb
attackerkb
CVE-2022-22718
2022-02-09 00:00:00
CVE-2022-21971
2022-02-09 00:00:00
CVE-2022-21999
2022-02-09 00:00:00
cisa_kev
cisa_kev
Microsoft Windows Print Spooler Privilege Escalation Vulnerability
2022-04-19 00:00:00
Microsoft Windows Runtime Remote Code Execution Vulnerability
2022-08-18 00:00:00
Microsoft Windows Print Spooler Privilege Escalation Vulnerability
2022-03-25 00:00:00
hivepro
hivepro
Microsoft Patch Tuesday addresses a zero-day vulnerability in Windows Kernel
2022-02-09 13:44:33
alpinelinux
alpinelinux
CVE-2022-22710
2022-02-09 17:15:00
thn
thn
Microsoft and Other Major Software Firms Release February 2022 Patch Updates
2022-02-09 06:40:00
Hackers Exploiting Recently Reported Windows Print Spooler Vulnerability in the Wild
2022-04-20 02:54:00
CISA Adds 7 New Actively Exploited Vulnerabilities to Catalog
2022-08-20 14:19:00
malwarebytes
malwarebytes
Update now! Firefox and Adobe updates are more critical than Microsoft’s
2022-02-09 12:10:20
Vulnerabilities in GPS tracker could have “life-threatening” implications
2022-07-21 09:57:08
CISA wants you to patch these actively exploited vulnerabilities before September 8
2022-08-22 15:00:00
krebs
krebs
Microsoft Patch Tuesday, February 2022 Edition
2022-02-08 22:38:16

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.4 Medium

EPSS

Percentile

97.2%

JSON
Related for KB5010456
nessus11mskb15openvas7kaspersky2avleonov1zdt1metasploit1packetstorm1threatpost1rapid7blog3qualysblog1checkpoint_advisories6prion21mscve21cve21zdi1githubexploit5veracode1attackerkb3cisa_kev3hivepro1alpinelinux1thn3malwarebytes3krebs1