Microsoft Addresses 49 Vulnerabilities in Windows Security Updates

Apps & Games / Microsoft Addresses 49 Vulnerabilities in Windows Security Updates
11 Jun 2024

Microsoft has rolled out its June 2024 Windows security updates, addressing a total of 49 unique vulnerabilities and republishing 9 non-Microsoft CVEs. This comprehensive update aims to bolster the security of both Windows client and server systems, providing critical patches and essential fixes.

Windows Client Updates

For Windows 10 version 22H2, the update tackles 27 vulnerabilities, including one critical and 27 important ones. Notably, the Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability (CVE-2024-30080) is a focal point of this update.

Windows 11 versions 22H2 and 23H2 each address 28 vulnerabilities, with one critical and 27 important. The MSMQ Remote Code Execution Vulnerability (CVE-2024-30080) remains a significant concern across these versions.

Windows Server Updates

Windows Server products have also received crucial updates. Windows Server 2008 R2 (extended support only) addresses 15 vulnerabilities, including one critical and 14 important. The MSMQ Remote Code Execution Vulnerability (CVE-2024-30080) is again highlighted.

Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, and Windows Server 2022 have all been updated to address various vulnerabilities. Each of these versions includes the critical MSMQ Remote Code Execution Vulnerability (CVE-2024-30080), emphasizing the widespread nature of this issue.

New Features and Fixes

The updates are not limited to security patches; they also introduce new features and improvements:

  • Windows 10 version 22H2: A new Snipping Tool feature allows users to prompt the tool when an Android device is connected and a screenshot is taken. This feature can be toggled on or off under Settings > Mobile Devices.
  • Windows 11 versions 22H2 and 23H2: Several new features have been added:
    • Prevents accidental closure of Windows share windows.
    • Drag & Drop support for breadcrumbs in File Explorer.
    • A new Linked devices page under Settings > Accounts for managing Xbox consoles and PCs (Home or Pro versions).
    • Rollout of an account manager on the Start menu.
    • The Windows Share menu now supports creating QR codes for webpage URLs and cloud files.
    • Backup of sound settings and schemes when "Remember my preferences" is enabled under Settings > Accounts > Windows backup.
    • An option to sign in to a Microsoft account in the Windows Backup app to save backups to the account.
    • An option to send emails to yourself from the Windows Share interface.
    • An option to add a recovery email under Settings > Account.

The updates also address several issues:

  1. Fixes an issue that affects lsass.exe, preventing it from responding.
  2. Fixes an issue that might stop systems from resuming from hibernate.
  3. Fixes a memory leak issue in lsass.exe.

These updates are designed to enhance both security and user experience, ensuring that systems remain protected while introducing useful new features. For detailed information on each update, system administrators and home users are encouraged to review the official support pages provided by Microsoft.

Update: 11 Jun 2024