KB5034123 is the cumulative update for Windows 11 released on 9 January 2024. It was released under the ‘Patch Tuesday’ project of Microsoft. This update caters to Windows 11 22H2 and 23H2 editions.
KB5034123 has now been superseded by KB5034765. You can read more about it on the KB5034765 page.
Salient points
- KB5034123 is a cumulative update that supersedes KB5033375. It corresponds to Windows 11 build 22621.3007 and 22631.3007.
- KB5034123 also includes all changes that are part of the preview update KB5023375. KB5023375 was released on 12 December 2023 and corresponds to Windows 11 builds 22621.2861 and 22631.2861.
- KB5034123 for Windows 11 22H2 edition corresponds to build 22621.3007.
- KB5034123 for Windows 11 23H2 edition corresponds to build 22631.3007.
- For Windows 11 22H2, Servicing Stack Update 22621.2567 corresponds to KB5032190, KB5033375, and KB5034123.
- For Windows 11 23H2, Servicing Stack Update 22631.2567 corresponds to KB5032190, KB5033375, and KB5034123.
- The Servicing Stack Updates for KB5034123 are included in the main cumulative update. Separate installation of Windows 11 Servicing Stack Update is not needed.
- There has been no new Servicing Stack Update release or Windows 11 22H2 and 23H2 editions in the month of January 2024.
- Separate installation files for KB5034123 are available for x64 and ARM64 systems.
- 35 security vulnerabilities affect Windows 11 versions of 22H2 x64 and 23H2 x64 systems.
- 34 security vulnerabilities affect Windows 11 versions of 22H2 ARM64 and 23H2 ARM64 platforms.
- 2 security vulnerabilities have ‘CRITICAL’ severity for Windows 11 versions 22H2 and 23H2. These vulnerabilities could lead to ‘Remote Code Execution’ attacks or the ‘Security Feature Bypass’ attacks.
Download KB5034123
You can install KB5034123 automatically using one of the following processes:
- Windows Update
- Windows Update for Business
- WSUS or Windows Server Update Service
For manual installation, you can download an offline installer file from the Microsoft Update Catalog site. We have shared the catalog link and the direct download links for the offline installer files.
The installer files for the update are available for x64 and ARM64 systems.
- Download KB5034123 from the Microsoft Update Catalog site
- Direct download KB5034123 for Windows 11 version 22H2 for x64 – the size of the update file is 638.4 MB.
- Direct download KB5034123 for Windows 11 version 22H2 for ARM64 – the size of the update file is 762.7 MB.
- Direct download KB5034123 for Windows 11 version 23H2 for x64 – the size of the update file is 638.4 MB.
- Direct download KB5034123 for Windows 11 version 23H2 for ARM64 – the size of the update file is 762.7 MB.
Your system will reboot after applying the KB5034123 security update.
It may be important to know that the Servicing Stack Updates 22621.2567 and 22631.2567 are built-in to the KB5032190, KB5033375, and KB5034123 cumulative updates. Separate installation of the Servicing Stack Update is not needed for Windows 11 22H2 and 23H2 editions.
It is also pertinent to know that all changes of KB5033375 are included in KB5034123. If you missed installing KB5033375, installing KB5034123 will give you full security coverage on Windows 11 22H2 and 23H2 editions.
Vulnerabilities
Windows 11 version 22H2 for x64 and 23H2 for x64 systems are affected by 35 security vulnerabilities. 2 of these vulnerabilities are ‘CRITICAL’ severity vulnerabilities.
Windows 11 versions 22H2 for ARM64 and 23H2 for ARM64 are affected by 34 security vulnerabilities. 2 of these vulnerabilities are ‘CRITICAL’ severity vulnerabilities.
CRITICAL vulnerabilities on Windows 11 version 22H2 and 23H2 for x64 and ARM64 deployments
The following are the 2 security vulnerabilities that affect Windows 11 versions 22H2 and 23H2 for x64 and ARM64 systems.
CVE details | CVSS | Severity | Impact | Description |
---|---|---|---|---|
CVE-2024-20674 | 9.0 | CRITICAL | Security Feature Bypass | The authentication feature could be bypassed as this vulnerability allows impersonation. An authenticated attacker could exploit this vulnerability by establishing a machine-in-the-middle (MITM) attack or other local network spoofing technique, then sending a malicious Kerberos message to the client victim machine to spoof itself as the Kerberos authentication server. |
CVE-2024-20700 | 7.5 | CRITICAL | Remote Code Execution | This vulnerability is in the Windows Hyper V system. It could cause a ‘Remote Code Execution’ attack. Successful exploitation of this vulnerability requires that an attacker will need to first gain access to the restricted network before running an attack. |
KB5034123 – Changelog
KB5034123 for Windows 11 22H2 and 23H2 include the following changes or improvements:
- This update addresses an issue that affects the spellchecker.
- On Windows 11 22H2, this update addresses an issue that affects the ActiveX scroll bar. It does not work in IE mode.
- On Windows 11 22H2, this update addresses an issue that causes your device to shut down after 60 seconds. This occurs when you use a smart card to authenticate on a remote system.
- On Windows 11 22H2, this update addresses an issue that affects the display of a smart card icon. The icon does not appear when you sign in. This occurs when there are multiple certificates on the smart card.
- On Windows 11 22H2, this update addresses a known issue that might affect some Wi-Fi adapters. They might not connect to some networks. This might occur after you install KB5032288 or KB5033375. This issue is more likely to occur if the Wi-Fi networks use 802.1x to authenticate. It is not likely that home networks will have this issue.
- This build includes all the improvements in Windows 11, version 22H2.
December 2023 Cumulative or Security Updates
- KB5033371 for Windows 10 version 1809
- KB5033373 for Windows 10 version 1607
- KB5033379 for Windows 10
- KB5033372 for Windows 10 21H2 and 22H2
- KB5033375 Cumulative Update for Windows 11 22H2 and 23H2
- KB5033369 Cumulative Update for Windows 11 21H2
- KB5033420 Monthly Rollup Update for Windows Server 2012 R2
- KB5033429 Monthly Rollup Update for Windows Server 2012
- KB5033383 Cumulative Update for Windows Server 2022
- KB5033118 Cumulative Update for Windows Server 2022
- KB5033371 Cumulative Update for Windows Server 2019
- KB5033373 Cumulative Update for Windows Server 2016
- Microsoft Edge upgrades to version 120.0.2210.61
Rajesh Dhawan is a technology professional who loves to write about Cyber-security events and stories, Cloud computing and Microsoft technologies. He loves to break complex problems into manageable chunks of meaningful information.