Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB5037770
HistoryMay 14, 2024 - 7:00 a.m.

May 14, 2024—KB5037770 (OS Build 22000.2960)

2024-05-1407:00:00
Microsoft
support.microsoft.com
42
windows 11 update
currency change
ie mode
vpn connection
security update
ipv6
active directory
group policy
virtual secure mode
ssu

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.1%

JSON

May 14, 2024—KB5037770 (OS Build 22000.2960)

For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11, version 21H2, see its update history page. NoteFollow @WindowsUpdate to find out when new content is published to the Windows release health dashboard.

**Tip:**Looking for this month’s video? It’s now in the article for Windows 11, versions 22H2 and 23H2.

Highlights

  • This update supports the currency change in Croatia from the kuna to the euro.
  • This update addresses an issue in that affects IE mode. It stops responding. This occurs if you press the left arrow key when an empty text box has focus and caret browsing is on.
  • This update addresses a known issue that might cause your VPN connection to fail. This occurs after you install the update dated April 9, 2024, or later.

Improvements

This security update includes improvements. When you install this KB:

  • This update brings Country and Operator Settings Asset (COSA) profiles up to date for certain mobile operators.
  • This update includes quarterly changes to the Windows Kernel Vulnerable Driver Blocklist file, DriverSiPolicy.p7b. It adds to the list of drivers that are at risk for Bring Your Own Vulnerable Driver (BYOVD) attacks.
  • This update addresses an issue that affects Active Directory. Bind requests to IPv6 addresses fail. This occurs when the requestor is not joined to a domain.
  • This update addresses an issue that might affect domain controllers (DC). NTLM authentication traffic might increase.
  • This update addresses an issue that affects Group Policy Folder Redirection in a multi-forest deployment. The issue stops you from choosing a group account from the target domain. Because of this, you cannot apply advanced folder redirection settings to that domain. This issue occurs when the target domain has a one-way trust with the domain of the admin user. This issue affects all Enhanced Security Admin Environment (ESAE), Hardened Forests (HF) or Privileged Access Management (PAM) deployments.
  • This update addresses an issue that might affect Virtual Secure Mode (VSM) scenarios. They might fail. These scenarios include VPN, Windows Hello, Credential Guard, and Key Guard.
    If you installed earlier updates, only the new updates contained in this package will be downloaded and installed on your device.For more information about security vulnerabilities, please refer to the Security Update Guide website and the May 2024 Security Updates.

Windows 11 servicing stack update - 22000.2958

This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Servicing stack updates (SSU) ensure that you have a robust and reliable servicing stack so that your devices can receive and install Microsoft updates.

Known issues in this update

Applies to Symptom Workaround
All users After installing this update, you might be unable to change your user account profile picture.When attempting to change a profile picture by selecting the button Start>Settings> Accounts>Your info, and then selecting** Choose a file**, you might receive an error message with error code 0x80070520. We are working on a resolution and will provide an update in an upcoming release.

How to get this update

Before installing this updateMicrosoft combines the latest servicing stack update (SSU) for your operating system with the latest cumulative update (LCU). For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.Install this update****Release Channel Available Next Step
Windows Update and Microsoft Update Yes None. This update will be downloaded and installed automatically from Windows Update.
Windows Update for Business Yes None. This update will be downloaded and installed automatically from Windows Update in accordance with configured policies.
Microsoft Update Catalog Yes To get the standalone package for this update, go to the Microsoft Update Catalog website.
Windows Server Update Services (WSUS) Yes This update will automatically sync with WSUS if you configure Products and Classifications as follows:Product: Windows 11Classification: Security Updates

If you want to remove the LCUTo remove the LCU after installing the combined SSU and LCU package, use the DISM/Remove-Package command line option with the LCU package name as the argument. You can find the package name by using this command:DISM /online /get-packages.Running Windows Update Standalone Installer (wusa.exe) with the**/uninstall **switch on the combined package will not work because the combined package contains the SSU. You cannot remove the SSU from the system after installation.

File informationFor a list of the files that are provided in this update, download the file information for cumulative update 5037770. For a list of the files that are provided in the servicing stack update, download the file information for the SSU - version 22000.2958.

Related

openvas 5
nessus 12
mskb 14
kaspersky 2
qualysblog 1
talosblog 1
rapid7blog 1
thn 1
krebs 1
cve 29
vulnrichment 27
nvd 32
mscve 36
cvelist 33
zdi 2
attackerkb 1
cisa_kev 1
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5037770)
2024-05-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5037768)
2024-05-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5037788)
2024-05-15 00:00:00
nessus
nessus
KB5037768: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (May 2024)
2024-05-14 00:00:00
KB5037788: Windows 10 LTS 1507 Security Update (May 2024)
2024-05-14 00:00:00
KB5037770: Windows 11 version 21H2 Security Update (May 2024)
2024-05-14 00:00:00
mskb
mskb
May 14, 2024— KB5037848 (OS Build 20348.2458)
2024-05-14 07:00:00
May 14, 2024—KB5037771 (OS Builds 22621.3593 and 22631.3593)
2024-05-14 07:00:00
May 14, 2024—KB5037768 (OS Builds 19044.4412 and 19045.4412)
2024-05-14 07:00:00
kaspersky
kaspersky
KLA67433 Multiple vulnerabilities in Microsoft Windows
2024-05-14 00:00:00
KLA67434 Multiple vulnerabilities in Microsoft Products (ESU)
2024-05-14 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, May 2024 Security Update Review
2024-05-14 18:40:02
talosblog
talosblog
Only one critical vulnerability included in May’s Microsoft Patch Tuesday; One other zero-day in DWN Core
2024-05-14 17:57:08
rapid7blog
rapid7blog
Patch Tuesday - May 2024
2024-05-14 20:25:36
thn
thn
Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days
2024-05-15 07:17:00
krebs
krebs
Patch Tuesday, May 2024 Edition
2024-05-14 20:19:23
cve
cve
CVE-2024-30012
2024-05-14 17:16:43
CVE-2024-30008
2024-05-14 17:16:38
CVE-2024-30001
2024-05-14 17:16:28
vulnrichment
vulnrichment
CVE-2024-30035 Windows DWM Core Library Elevation of Privilege Vulnerability
2024-05-14 16:57:24
CVE-2024-30021 Windows Mobile Broadband Driver Remote Code Execution Vulnerability
2024-05-14 16:57:13
CVE-2024-30033 Windows Search Service Elevation of Privilege Vulnerability
2024-05-14 16:57:23
nvd
nvd
CVE-2024-30001
2024-05-14 17:16:28
CVE-2024-30032
2024-05-14 17:17:04
CVE-2024-30033
2024-05-14 17:17:05
mscve
mscve
Windows DWM Core Library Elevation of Privilege Vulnerability
2024-05-14 07:00:00
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
2024-05-14 07:00:00
Windows DWM Core Library Elevation of Privilege Vulnerability
2024-05-14 07:00:00
cvelist
cvelist
CVE-2024-30008 Windows DWM Core Library Information Disclosure Vulnerability
2024-05-14 16:57:07
CVE-2024-30000 Windows Mobile Broadband Driver Remote Code Execution Vulnerability
2024-05-14 16:57:02
CVE-2024-30021 Windows Mobile Broadband Driver Remote Code Execution Vulnerability
2024-05-14 16:57:13
zdi
zdi
Microsoft Windows Search Service Link Following Local Privilege Escalation Vulnerability
2024-05-14 00:00:00
Microsoft Windows cldflt Type Confusion Information Disclosure Vulnerability
2024-05-14 00:00:00
attackerkb
attackerkb
CVE-2024-30040
2024-05-14 00:00:00
cisa_kev
cisa_kev
Microsoft DWM Core Library Privilege Escalation Vulnerability
2024-05-14 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.1%

JSON
Related for KB5037770
openvas5nessus12mskb14kaspersky2qualysblog1talosblog1rapid7blog1thn1krebs1cve29vulnrichment27nvd32mscve36cvelist33zdi2attackerkb1cisa_kev1