Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB5019080
HistoryJan 26, 2023 - 8:00 a.m.

November 8, 2022—Hotpatch KB5019080 (OS Build 20348.1251)

2023-01-2608:00:00
Microsoft
support.microsoft.com
30
security update
kb5019080
os build 20348.1251
microsoft
windows update
wsus
file information
servicing stack update

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.562

Percentile

97.7%

JSON

November 8, 2022—Hotpatch KB5019080 (OS Build 20348.1251)

Improvements and fixes

This security update includes quality improvements. When you install this KB:

  • It makes miscellaneous security improvements to internal OS functionality. No additional issues were documented for this release.
    If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

How to get this update

Before installing this update

Microsoft now combines the latest servicing stack update (SSU) for your operating system with the hotpatch update. For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.If you are using Windows Update or Windows Server Update Services (WSUS), the latest SSU will be installed with this update.

Install this update

Release Channel Available Next Step
Windows Update Yes None. This update will be downloaded and installed automatically from Windows Update.
Microsoft Update Catalog No To get the standalone package for this update, go to the Microsoft Update Catalog website.
Windows Server Update Services (WSUS) Yes This update will automatically sync with WSUS if you configure Products and Classifications as follows:Product: Windows Server 2022 Datacenter: Azure Edition HotpatchClassification: Security Updates

File information

For a list of the files that are provided in this update, download the file information for cumulative update 5019080.For a list of the files that are provided in the servicing stack update, download the file information for the SSU - version 20348.1066.

Related

mskb 16
openvas 15
nessus 18
kaspersky 3
rapid7blog 1
thn 1
talosblog 2
attackerkb 4
krebs 1
avleonov 1
nvd 22
cvelist 24
prion 24
mscve 23
qualysblog 1
checkpoint_advisories 5
cve 23
hivepro 1
zdi 1
vulnrichment 8
ubuntucve 1
cisa_kev 2
veracode 1
osv 1
mskb
mskb
November 8, 2022—KB5019961 (OS Build 22000.1219)
2023-01-26 08:00:00
November 8, 2022—KB5019980 (OS Build 22621.819)
2023-01-26 08:00:00
November 8, 2022—KB5019959 (OS Builds 19042.2251, 19043.2251, 19044.2251, and 19045.2251)
2023-01-26 08:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5019961)
2023-08-08 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5019959)
2022-11-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5019980)
2023-08-08 00:00:00
nessus
nessus
KB5019959: Windows 10 Version 20H2 / 21H1 / 21H2 / 22H2 Security Update (November 2022)
2022-11-08 00:00:00
KB5019961: Windows 11 Security Update (November 2022)
2022-11-08 00:00:00
KB5019980: Windows 11 22H2 Security Update (November 2022)
2022-11-08 00:00:00
kaspersky
kaspersky
KLA20047 Multiple vulnerabilities in Microsoft Windows
2022-11-08 00:00:00
KLA20045 Multiple vulnerabilities in Microsoft Products (ESU)
2022-11-08 00:00:00
KLA20189 ACE vulnerability in Microsoft Windows
2023-01-26 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - November 2022
2022-11-08 20:02:57
thn
thn
Install Latest Windows Update ASAP! Patches Issued for 6 Actively Exploited Zero-Days
2022-11-09 05:16:00
talosblog
talosblog
Microsoft Patch Tuesday for November 2022 — Snort rules and prominent vulnerabilities
2022-11-08 18:22:00
Following the LNK metadata trail
2023-01-19 13:00:19
attackerkb
attackerkb
CVE-2022-41118
2022-11-09 00:00:00
CVE-2022-41128
2022-11-09 00:00:00
CVE-2022-41125
2022-11-09 00:00:00
krebs
krebs
Patch Tuesday, November 2022 Election Edition
2022-11-09 01:50:14
avleonov
avleonov
Microsoft Patch Tuesday November 2022: Exchange ProxyNotShell RCE, JScript9, MoTW, OpenSSL, Edge, CNG, Print Spooler
2022-11-25 20:56:48
nvd
nvd
CVE-2022-41102
2022-11-09 22:15:23
CVE-2022-41118
2022-11-09 22:15:24
CVE-2022-41096
2022-11-09 22:15:22
cvelist
cvelist
CVE-2022-41114 Windows Bind Filter Driver Elevation of Privilege Vulnerability
2022-11-09 00:00:00
CVE-2022-41101 Windows Overlay Filter Elevation of Privilege Vulnerability
2022-11-09 00:00:00
CVE-2022-41052 Windows Graphics Component Remote Code Execution Vulnerability
2022-11-09 00:00:00
prion
prion
Privilege escalation
2022-11-09 22:15:00
Privilege escalation
2022-11-09 22:15:00
Remote code execution
2022-11-09 22:15:00
mscve
mscve
Windows Graphics Component Remote Code Execution Vulnerability
2022-11-08 08:00:00
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
2022-11-08 08:00:00
Windows Overlay Filter Elevation of Privilege Vulnerability
2022-11-08 08:00:00
qualysblog
qualysblog
November 2022 Patch Tuesday | Microsoft Releases 65 New Vulnerabilities with 10 Critical; Adobe Releases Zero Advisories (for the first time in six years).
2022-11-08 21:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Win32k Elevation of Privilege (CVE-2022-41109)
2022-11-08 00:00:00
Microsoft Windows Scripting Languages Remote Code Execution (CVE-2022-41118)
2022-11-08 00:00:00
Microsoft Windows CNG Key Isolation Service Elevation of Privilege (CVE-2022-41125)
2022-11-08 00:00:00
cve
cve
CVE-2022-41096
2022-11-09 22:15:22
CVE-2022-41114
2022-11-09 22:15:24
CVE-2022-41125
2022-11-09 22:15:25
hivepro
hivepro
Microsoft addressed ProxyNotShell with November Patch Tuesday
2022-11-10 10:01:18
zdi
zdi
Microsoft Raw Image Extension CR2 File Parsing Memory Corruption Remote Code Execution Vulnerability
2022-11-21 00:00:00
vulnrichment
vulnrichment
CVE-2022-41086 Windows Group Policy Elevation of Privilege Vulnerability
2022-11-09 00:00:00
CVE-2022-41088 Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
2022-11-09 00:00:00
CVE-2022-41093 Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
2022-11-09 00:00:00
ubuntucve
ubuntucve
CVE-2022-23824
2022-11-09 00:00:00
cisa_kev
cisa_kev
Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability
2022-11-08 00:00:00
Microsoft Windows Scripting Languages Remote Code Execution Vulnerability
2022-11-08 00:00:00
veracode
veracode
Information Disclosure
2022-11-12 04:46:23
osv
osv
CVE-2022-23824
2022-11-09 21:15:13

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.562

Percentile

97.7%

JSON
Related for KB5019080
mskb16openvas15nessus18kaspersky3rapid7blog1thn1talosblog2attackerkb4krebs1avleonov1nvd22cvelist24prion24mscve23qualysblog1checkpoint_advisories5cve23hivepro1zdi1vulnrichment8ubuntucve1cisa_kev2veracode1osv1