KB5022834 is a cumulative update for Windows 10 versions 20H2, 21H2, and 22H2. Another way to put this is that the KB5022834 cumulative update is meant for Windows 10 versions 1903 and later. This update was released on 14th February under Microsoft’s ‘Patch Tuesday’ program.
Key points about KB5022834 for Windows 10
KB5022834 is available for Windows 10 versions 20H2, 21H2, and 22H2. Essentially, we are looking at upgrading desktop builds to 19042.2604, 19044.2604, and 19045.2604.
KB5022834 supersedes KB5022282 which was released on 10th January 2023. The build corresponding to KB5022282 for Windows 10 versions 20H2, 21H2, and 22H2 are 19042.2486, 19044.2486, and 19045.2486 respectively. You can read more about KB5022282 on this page.
The servicing stack updates are rolled into cumulative updates for Windows 10. So, no separate installation of a Servicing Stack update is required for Windows 10 systems. The Servicing Stack update builds for Windows 10 versions 20H2, 21H2 and 22H2 are 19042.2300, 19044.2300 and 19045.2300.
However, there are specific requirements that need to be fulfilled in terms of Servicing Stack updates.
- For WSUS deployments, you must ensure that you have the cumulative update of May 2021 or later. The May 2021 cumulative update is KB5003173. So, either you must have deployed KB5003173 or a later cumulative update. If that is not possible, you can install the KB5005260 Servicing Stack update on Windows 10 systems.
- For offline operating system images, you need March 2022 latest cumulative update KB5011543 or any other cumulative update which was released for Windows 10 later. If this is not possible, you must deploy the KB5014032 Servicing Stack update released in May 2022.
Deployment of KB5022834 on Windows 10 systems
All standard methods of deployment of KB5022834 are supported for Windows 10 versions 20H2, 21H2 and 22H2. The following methods can be used to install KB5022834:
- Windows Update
- Windows Update for Business
- WSUS or Windows Server Update Service to roll out the update to client workstations
- Manual deployment
For manual installation, you will need to download the offline installer file from the Microsoft Update catalog page for KB5022834.
- The download needs to be completed for specific versions of Windows 10.
- The download needs to be made for the specific platforms x86 and x64.
KB5022834 – Security vulnerabilities on Windows 10 versions 1903
February 2023’s security bulletin addresses 34 vulnerabilities on Windows 10 under the KB5022834 cumulative update. Windows 10 20H2, 21H2, and 22H2 are all affected by these vulnerabilities.
Three of these vulnerabilities are ‘CRITICAL’ vulnerabilities with ‘Remote Code Execution’ security loopholes. A brief description of these vulnerabilities is listed below for your consideration.
| Vulnerability | CVSS | Impact |
|---|---|---|
| CVE-2023-21689 | 9.8 | Remote Code Execution in Microsoft Protected Extensible Authentication Protocol (PEAP) |
| CVE-2023-21690 | 9.8 | Remote Code Execution in Microsoft Protected Extensible Authentication Protocol (PEAP) |
| CVE-2023-21692 | 9.8 | Remote Code Execution in Microsoft Protected Extensible Authentication Protocol (PEAP) |
Since these vulnerabilities carry a CVSS score of 9.8, it is imperative that the cumulative updates for Windows 10 version 1903 and later must be installed on a priority basis.
Rajesh Dhawan is a technology professional who loves to blog about smart wearables, Cloud computing and Microsoft technologies. He loves to break complex problems into manageable chunks of meaningful information.