Azure File Sync Agent v17.3 Release - June 2024 (Security-only update)

This article describes the improvements and issues that are fixed in the Azure File Sync Agent v17.3 release that is dated June 2024. Additionally, this article contains installation instructions for this release.

Improvements and issues that are fixed

• Fixes an issue that might allow unauthorized users to delete files in locations they don’t have access. This is a security-only update. For more information about this vulnerability, see CVE-2024-35253.
  Note: This security update is specifically for servers that have Azure File Sync Agent version v16.x or v17.x installed.

More information about the Azure File Sync Agent v17.3 release

• This security update is available for Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, and Windows Server 2022 installations.
• The agent version for this release is 17.3.0.0.

How to obtain and install the Azure File Sync Agent

The Azure File Sync agent is available from Microsoft Update & Microsoft Update Catalog.Notes

• Agent v17.3 version is only for upgrades for existing agent installations with agent version v16.x, v17.0, v17.1 & v17.2 and will not be available in Microsoft Download Center.
• To update existing agent installations, download and install the update from Microsoft Update or Microsoft Update Catalog.
• AfsUpdater.exe will not work for v17.3 agent installation.

Microsoft Update

To obtain and install from Microsoft Update, follow these steps on a server that has Azure File Sync agent installed:Windows Server 2022, Server 2019 and Server 2016

1. Click Start, and then click Settings.

2. In Settings, click Update & security.

3. In the Windows Update window, click Check online for updates from Microsoft Update.

4. Verify the Azure File Sync agent update is listed and then click Install now.
   Server 2012 R2

5. Click Start, and then click Control Panel.

6. In Control Panel, double-click Windows Update.

7. In the Windows Update window, click Check for updates.

8. Click Important updates are available.

9. Verify the Azure File Sync agent update is selected, and then click Install.

Microsoft Update Catalog

Go to the following website to manually download this update from the Microsoft Update Catalog:Azure File Sync Agent v17.3 release: June 2024 (KB5039814)To manually install the update package, extract the cab file and run the following command from an elevated command prompt:msiexec.exe /p packagename.msp REINSTALLMODE=OMUS REINSTALL=StorageSyncAgent,StorageSyncAgentAzureFileSync,StorageSyncAgentGuardFilter,StorageSyncAgentUpdater /qb /lv KB5039814.logFor example, to install the Azure File Sync agent update for Server 2016, run the following command:msiexec.exe /p StorageSyncAgent_WS2016_KB5039814.msp REINSTALLMODE=OMUS REINSTALL=StorageSyncAgent,StorageSyncAgentAzureFileSync,StorageSyncAgentGuardFilter,StorageSyncAgentUpdater /qb /lv KB5039814.log