Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB5032202
HistoryFeb 20, 2024 - 8:00 a.m.

November 14, 2023—KB5032202 (OS Build 25398.531)

2024-02-2008:00:00
Microsoft
support.microsoft.com
103
windows update
quality improvements
syria dst
ukraine capital
app-v
kubernetes
vulnerable driver
laps
com+

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.57 Medium

EPSS

Percentile

97.7%

JSON

November 14, 2023—KB5032202 (OS Build 25398.531)

For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server, version 23H2, see its update history page.

Improvements

This security update includes quality improvements. When you install this KB:

  • This update supports daylight saving time (DST) changes in Syria. To learn more, see Interim guidance for Syria DST changes 2022.
  • This update changes the spelling of Ukraine’s capital from Kiev to Kyiv.
  • This update addresses an issue that affects an Application Virtualization (App-V) environment. Copy operations within it stop working. This occurs after you install the April 2023 update.
  • This update addresses an issue that blocks external connections. This occurs when you set up a Kubernetes load balanced service and turn on session affinity.
  • This update affects the Windows Kernel Vulnerable Driver Blocklist, DriverSiPolicy.p7b. It adds drivers that are at risk for Bring Your Own Vulnerable Driver (BYOVD) attacks.
  • This update addresses an issue that affects Windows LAPS. Its PasswordExpirationProtectionEnabled policy fails to turn on the setting.
  • This update addresses an issue that affects a COM+ component. It might stop responding. This occurs because of a deadlock during COM+ Just-in-Time (JIT) activation. However, this part of this update is off by default for this version of Windows. If you have this issue, you must contact Microsoft support to turn it on.
    For more information about security vulnerabilities, please refer to the Security Update Guide and the November 2023 Security Updates.

Windows Server, version 23H2 servicing stack update - 25398.521

This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Servicing stack updates (SSU) ensure that you have a robust and reliable servicing stack so that your devices can receive and install Microsoft updates.

Known issues in this update

Microsoft is not currently aware of any issues with this update.

How to get this update

Before installing this updateMicrosoft now combines the latest servicing stack update (SSU) for your operating system with the latest cumulative update (LCU). For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.Install this update****Release Channel Available Next Step
Windows Update and Microsoft Update Yes None. This update will be downloaded and installed automatically from Windows Update.
Windows Update for Business Yes None. This update will be downloaded and installed automatically from Windows Update in accordance with configured policies.
Microsoft Update Catalog Yes To get the standalone package for this update, go to the Microsoft Update Catalog website.
Windows Server Update Services (WSUS) Yes This update will automatically sync with WSUS if you configure Products and Classifications as follows:Product: Microsoft Server operating system-21H2Classification: Security Updates

If you want to remove the LCUTo remove the LCU after installing the combined SSU and LCU package, use the DISM/Remove-Package command line option with the LCU package name as the argument. You can find the package name by using this command:DISM /online /get-packages.Running Windows Update Standalone Installer (wusa.exe) with the**/uninstall **switch on the combined package will not work because the combined package contains the SSU. You cannot remove the SSU from the system after installation.

File InformationFor a list of the files that are provided in this update, download the file information for cumulative update 5032202.For a list of the files that are provided in the servicing stack update, download the file information for the SSU - version 25398.521.

Related

openvas 6
mskb 14
nessus 11
kaspersky 3
talosblog 2
rapid7blog 1
qualysblog 1
thn 5
malwarebytes 1
cve 26
prion 24
nvd 29
vulnrichment 13
cvelist 30
mscve 24
debiancve 1
krebs 1
githubexploit 3
cisa_kev 2
hivepro 1
attackerkb 1
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5032190)
2023-11-16 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5032189)
2023-11-16 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5032192)
2023-11-15 00:00:00
mskb
mskb
November 14, 2023—KB5032190 (OS Builds 22621.2715 and 22631.2715)
2024-02-20 08:00:00
November 14, 2023— KB5032304 (OS Build 20348.2091)
2023-11-14 08:00:00
November 14, 2023—KB5032198 (OS Build 20348.2113)
2024-02-20 08:00:00
nessus
nessus
KB5032249: Windows Server 2012 R2 Security Update (November 2023)
2023-11-14 00:00:00
KB5032197: Windows 10 Version 1607 and Windows Server 2016 Security Update (November 2023)
2023-11-14 00:00:00
KB5032189: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (November 2023)
2023-11-14 00:00:00
kaspersky
kaspersky
KLA61975 Multiple vulnerabilities in Microsoft Windows
2023-11-14 00:00:00
KLA61980 Multiple vulnerabilities in Microsoft Products (ESU)
2023-11-14 00:00:00
KLA63962 PE vulnerability in Microsoft System Center
2024-02-20 00:00:00
talosblog
talosblog
Microsoft discloses only three critical vulnerabilities in November’s Patch Tuesday update, three other zero-days
2023-11-14 19:46:02
We all just need to agree that ad blockers are good
2023-11-16 19:00:39
rapid7blog
rapid7blog
Patch Tuesday - November 2023
2023-11-14 21:27:09
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, November 2023 Security Update Review
2023-11-14 20:29:03
thn
thn
Alert: Microsoft Releases Patch Updates for 5 New Zero-Day Vulnerabilities
2023-11-15 05:46:00
Decoy Microsoft Word Documents Used to Deliver Nim-Based Malware
2023-12-22 12:46:00
Alert: New Phishing Attack Delivers Keylogger Disguised as Bank Payment Notice
2024-03-27 07:56:00
malwarebytes
malwarebytes
Update now! Microsoft patches 3 actively exploited zero-days
2023-11-15 22:04:31
cve
cve
CVE-2023-36392
2023-11-14 18:15:37
CVE-2023-36406
2023-11-14 18:15:42
CVE-2023-36395
2023-11-14 18:15:38
prion
prion
Denial of service
2023-11-14 18:15:00
Denial of service
2023-11-14 18:15:00
Information disclosure
2023-11-14 18:15:00
nvd
nvd
CVE-2023-36406
2023-11-14 18:15:42
CVE-2023-36399
2023-11-14 18:15:40
CVE-2023-36395
2023-11-14 18:15:38
vulnrichment
vulnrichment
CVE-2023-36406 Windows Hyper-V Information Disclosure Vulnerability
2023-11-14 17:57:19
CVE-2023-36399 Windows Storage Elevation of Privilege Vulnerability
2023-11-14 17:57:23
CVE-2024-21315 Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
2024-02-13 18:02:27
cvelist
cvelist
CVE-2023-36405 Windows Kernel Elevation of Privilege Vulnerability
2023-11-14 17:57:19
CVE-2024-21315 Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
2024-02-13 18:02:27
CVE-2023-36395 Windows Deployment Services Denial of Service Vulnerability
2023-11-14 17:57:25
mscve
mscve
Windows Kernel Elevation of Privilege Vulnerability
2023-11-14 08:00:00
Windows Hyper-V Information Disclosure Vulnerability
2023-11-14 08:00:00
Windows Hyper-V Elevation of Privilege Vulnerability
2023-11-14 08:00:00
debiancve
debiancve
CVE-2023-24023
2023-11-28 07:15:41
krebs
krebs
Microsoft Patch Tuesday, November 2023 Edition
2023-11-14 23:00:59
githubexploit
githubexploit
Exploit for CVE-2023-36427
2023-10-09 16:55:18
Exploit for CVE-2023-36025
2023-12-28 23:29:04
Exploit for Improper Input Validation in Microsoft
2024-04-07 16:59:55
cisa_kev
cisa_kev
Microsoft Windows Cloud Files Mini Filter Driver Privilege Escalation Vulnerability
2023-11-14 00:00:00
Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability
2023-11-14 00:00:00
hivepro
hivepro
Attacks, Vulnerabilities and Actors 5 to 11 February 2024
2024-02-13 11:12:58
attackerkb
attackerkb
CVE-2023-36036
2023-11-14 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.57 Medium

EPSS

Percentile

97.7%

JSON
Related for KB5032202
openvas6mskb14nessus11kaspersky3talosblog2rapid7blog1qualysblog1thn5malwarebytes1cve26prion24nvd29vulnrichment13cvelist30mscve24debiancve1krebs1githubexploit3cisa_kev2hivepro1attackerkb1