KB5034130 for Windows Server 2022 23H2 edition

KB5034130 is the latest cumulative update for Windows Server 2022 23H2 edition. It was released on January 9 2024. It was released under the ‘Patch Tuesday’ project of Microsoft.

  • KB5034130 is a cumulative update that supersedes the KB5033383 update.
  • KB5033383 is the first cumulative update for Windows Server 2022 23H2 edition. You can read details of the KB5033383 cumulative update on the KB5033383 page.
  • KB5034130 corresponds to the server build 25398.643.
  • KB5033383 corresponds to the server build 25398.584.
  • Upgrading from KB5033383 to KB5034130 implies you are upgrading from build 584 to 643.
  • Servicing Stack Update 25398.640 corresponds to KB5034130. This Servicing Stack Update was released in January 2024.
  • The Servicing Stack Update for Windows Server 2022 23H2 edition is part of the cumulative update. Separate installation of the SSU is not needed on Windows Server 2022 23H2 edition.
  • Windows Server 2022 23H2 edition is affected by 35 security vulnerabilities.
  • Two CRITICAL security vulnerabilities impact Windows Server 2022 23H2 edition.

KB5034130 can be applied automatically using one of the following methods:

  • Windows Update
  • Windows Update for Business
  • WSUS or Windows Server Update Services

WSUS remains the most preferred method to automatically deploy security and cumulative updates.

For automated deployments, the Servicing Stack Update 25398.640 will be automatically installed as part of the installation of the KB5034130 cumulative update on Windows Server 2022 23H2 edition.

For manual deployment of KB5034130, you will need to follow a 1-step process.

  • Download and install KB5034130 cumulative update.

The download of the cumulative update can be completed from the Microsoft Update Catalog site. The installer is available as an offline installer file in the .MSU format for Windows Server 2022 version 23H2.

KB5034130 for Windows Server 2022 version 23H2 can be downloaded from the Microsoft Update Catalog site. Or, you could use the direct download link below.

The size of the cumulative update KB5034130 file for the 23H2 version of Windows Server 2022 is 91.1 MB. KB5034130 will cause a server reboot. Please plan for implementation as part of an organized change management process.

If you have already deployed KB5033383 on the Windows Server 2022 23H2 edition, only the incremental changes of KB5034130 will be downloaded and installed as part of the update process. This process will be swift and short.

35 security vulnerabilities affect the Windows Server 2022 23H2 edition. This is based on the January 2024 security reports. 2 of these vulnerabilities are CRITICAL severity vulnerabilities.

The remaining 33 security vulnerabilities have IMPORTANT severity levels.

We have listed the CRITICAL vulnerabilities for Windows Server 2022 23H2 edition below.

The two CRITICAL security vulnerabilities on Windows Server 2022 23H2 edition are listed below.

CVE detailsCVSSSeverityImpact Description
CVE-2024-206749.0CRITICALSecurity Feature BypassThe authentication feature could be bypassed as this vulnerability allows impersonation.

An authenticated attacker could exploit this vulnerability by establishing a machine-in-the-middle (MITM) attack or other local network spoofing technique, then sending a malicious Kerberos message to the client victim machine to spoof itself as the Kerberos authentication server.
CVE-2024-207007.5CRITICALRemote Code ExecutionThis vulnerability is in the Windows Hyper V system. It could cause a ‘Remote Code Execution’ attack.
Successful exploitation of this vulnerability requires that an attacker will need to first gain access to the restricted network before running an attack.

The following changes or improvements are part of the KB5034130 cumulative update for Windows Server 2022 23H2 edition:

  • This update addresses an issue that affects the Trusted Sites Zone logon policy. You cannot manage it using mobile device management (MDM).
  • This update addresses an issue that affects the ActiveX scroll bar. It does not work in IE mode.
  • This update addresses an issue that causes your device to shut down after 60 seconds. This occurs when you use a smart card to authenticate on a remote system.
  • This update addresses an issue that affects the display of a smart card icon. The icon does not appear when you sign in. This occurs when there are multiple certificates on the smart card.
  • This update addresses an issue that affects the Key Distribution Service (KDS). It does not start in the time required if LDAP referrals are needed.

How useful was this post?

Click on a star to rate it!

We are sorry that this post was not useful for you!

Let us improve this post!

Tell us how we can improve this post?

Rajesh Dhawan

Rajesh Dhawan is a technology professional who loves to blog about smart wearables, Cloud computing and Microsoft technologies. He loves to break complex problems into manageable chunks of meaningful information.