Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB5035855
HistoryMar 12, 2024 - 7:00 a.m.

March 12, 2024—KB5035855 (OS Build 14393.6796)

2024-03-1207:00:00
Microsoft
support.microsoft.com
367
kb5035855
os build 14393.6796
install kb5037423
lsass memory leak
security update guide
march 2024 security updates
windows server update services
windows update terminology
windows 10
kb5035962
microsoft update catalog
servicing stack updates

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

44.1%

JSON

March 12, 2024—KB5035855 (OS Build 14393.6796)

NEW 3/22/24 IMPORTANT If you plan to install this update on a domain controller (DC), we highly recommend that you install KB5037423 instead (March 22, 2024). This out-of-band update addresses a known issue that affects the Local Security Authority Subsystem Service (LSASS). It might leak memory on DCs.

11/19/20
For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 10, version 1607, see its update history page.

Highlights

  • This update addresses security issues for your Windows operating system.

Improvements

This security update includes quality improvements. When you install this KB:

  • This update makes miscellaneous security improvements to internal OS functionality. No additional issues were documented for this release.
    If you installed earlier updates, only the new updates contained in this package will be downloaded and installed on your device. For more information about security vulnerabilities, please refer to the new Security Update Guide website and the March 2024 Security Updates.

Known issues in this update

Symptom Workaround
Following installation of this update, Local Security Authority Subsystem Service (LSASS) may experience a memory leak on domain controllers (DCs). This is observed when on-premises and cloud-based Active Directory Domain Controllers service Kerberos authentication requests.

Extreme memory leaks may cause LSASS to crash, which triggers an unscheduled reboot of underlying domain controllers (DCs).| This issue is addressed in KB5037423.

How to get this update

Before installing this updateMicrosoft strongly recommends you install the latest servicing stack update (SSU) for your operating system before installing the latest cumulative update (LCU). SSUs improve the reliability of the update process to mitigate potential issues while installing the LCU and applying Microsoft security updates. For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions. If you are using Windows Update, the latest SSU (KB5035962) will be offered to you automatically. To get the standalone package for the latest SSU, search for it in the Microsoft Update Catalog.Install this update****Release Channel Available Next Step
Windows Update and Microsoft Update Yes None. This update will be downloaded and installed automatically from Windows Update.
Windows Update for Business Yes None. This update will be downloaded and installed automatically from Windows Update in accordance with configured policies.
Microsoft Update Catalog Yes To get the standalone package for this update, go to the Microsoft Update Catalog website.
Windows Server Update Services (WSUS) Yes This update will automatically sync with WSUS if you configure Products and Classifications as follows:Product: Windows 10Classification: Security Updates File informationFor a list of the files that are provided in this update, download the file information for cumulative update 5035855.

Related

mskb 14
nessus 20
kaspersky 2
openvas 17
qualysblog 1
rapid7blog 2
hivepro 1
malwarebytes 1
talosblog 1
cvelist 30
prion 29
mscve 30
cve 30
krebs 1
cnvd 2
ubuntucve 1
alpinelinux 1
xen 1
redhatcve 1
veracode 1
debiancve 1
osv 1
intel 1
thn 1
fedora 3
citrix 1
mageia 1
googleprojectzero 1
hp 1
freebsd 1
debian 1
mskb
mskb
March 12, 2024—KB5035885 (Monthly Rollup)
2024-03-12 07:00:00
March 12, 2024—KB5035933 (Security-only update)
2024-03-12 07:00:00
March 12, 2024—KB5035919 (Security-only update)
2024-03-12 07:00:00
nessus
nessus
KB5035933: Windows Server 2008 Security Update (March 2024)
2024-03-12 00:00:00
KB5035858: Windows 10 LTS 1507 Security Update (March 2024)
2024-03-12 00:00:00
KB5035855: Windows 10 Version 1607 / Windows Server 2016 Security Update (March 2024)
2024-03-12 00:00:00
kaspersky
kaspersky
KLA65123 Multiple vulnerabilities in Microsoft Products (ESU)
2024-03-12 00:00:00
KLA65126 Multiple vulnerabilities in Microsoft Windows
2024-03-12 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5035930)
2024-03-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5035858)
2024-03-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5035849)
2024-03-13 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, March 2024 Security Update Review
2024-03-12 18:37:05
rapid7blog
rapid7blog
Patch Tuesday - March 2024
2024-03-12 19:47:44
Rapid7 offers continued vulnerability coverage in the face of NVD delays
2024-03-18 14:30:00
hivepro
hivepro
Microsoft’s March 2024 Patch Tuesday Addresses 60 Vulnerabilities
2024-03-14 18:10:28
malwarebytes
malwarebytes
Microsoft Patch Tuesday March 2024 includes critical Hyper-V flaws
2024-03-13 15:13:40
talosblog
talosblog
Another Patch Tuesday with no zero-days, only two critical vulnerabilities disclosed by Microsoft
2024-03-12 18:07:55
cvelist
cvelist
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
2024-03-12 16:58:08
Windows Print Spooler Elevation of Privilege Vulnerability
2024-03-12 16:58:02
NTFS Elevation of Privilege Vulnerability
2024-03-12 16:57:50
prion
prion
Privilege escalation
2024-03-12 17:15:00
Remote code execution
2024-03-12 17:15:00
Information disclosure
2024-03-12 17:15:00
mscve
mscve
Windows Kernel Elevation of Privilege Vulnerability
2024-03-12 07:00:00
Windows Kernel Elevation of Privilege Vulnerability
2024-03-12 07:00:00
Windows Kernel Elevation of Privilege Vulnerability
2024-03-12 07:00:00
cve
cve
CVE-2024-26197
2024-03-12 16:57:51
CVE-2024-26182
2024-03-12 16:58:13
CVE-2024-21429
2024-03-12 16:57:44
krebs
krebs
Patch Tuesday, March 2024 Edition
2024-03-12 20:36:33
cnvd
cnvd
Microsoft Windows Hyper-V Remote Code Execution Vulnerability (CNVD-2024-19327)
2024-03-14 00:00:00
Microsoft Windows Hyper-V Denial of Service Vulnerability (CNVD-2024-19326)
2024-03-14 00:00:00
ubuntucve
ubuntucve
CVE-2023-28746
2024-03-12 00:00:00
alpinelinux
alpinelinux
CVE-2023-28746
2024-03-14 17:15:50
xen
xen
x86: Register File Data Sampling
2024-03-12 16:44:00
redhatcve
redhatcve
CVE-2023-28746
2024-03-21 14:31:21
veracode
veracode
Information Exposure
2024-03-16 08:18:03
debiancve
debiancve
CVE-2023-28746
2024-03-14 17:15:50
osv
osv
CVE-2023-28746
2024-03-14 17:15:50
intel
intel
2024.1 IPU - Intel® Atom® Processor Advisory
2024-03-12 00:00:00
thn
thn
Microsoft's March Updates Fix 61 Vulnerabilities, Including Critical Hyper-V Flaws
2024-03-13 05:38:00
fedora
fedora
[SECURITY] Fedora 38 Update: xen-4.17.2-8.fc38
2024-03-30 01:44:40
[SECURITY] Fedora 39 Update: xen-4.17.2-8.fc39
2024-03-30 01:09:49
[SECURITY] Fedora 40 Update: xen-4.18.1-1.fc40
2024-03-23 00:54:07
citrix
citrix
Citrix Hypervisor Security Update for CVE-2023-39368 and CVE-2023-38575
2024-03-12 17:06:58
mageia
mageia
Updated xen packages fix security vulnerabilities
2024-04-10 07:03:52
googleprojectzero
googleprojectzero
The Windows Registry Adventure #1: Introduction and research results
2024-04-18 00:00:00
hp
hp
Intel 2024.1 IPU - BIOS March 2024 Security Updates
2024-03-13 00:00:00
freebsd
freebsd
Intel CPUs -- multiple vulnerabilities
2023-03-12 00:00:00
debian
debian
[SECURITY] [DLA 3808-1] intel-microcode security update
2024-05-04 15:21:43

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

44.1%

JSON
Related for KB5035855
mskb14nessus20kaspersky2openvas17qualysblog1rapid7blog2hivepro1malwarebytes1talosblog1cvelist30prion29mscve30cve30krebs1cnvd2ubuntucve1alpinelinux1xen1redhatcve1veracode1debiancve1osv1intel1thn1fedora3citrix1mageia1googleprojectzero1hp1freebsd1debian1