KB5046615 is the cumulative update for Windows Server 2019 and Windows Server 2019 Server Core installation. It was released on 12 November, 2024 under the ‘Patch Tuesday’ release cycle.
Salient points
- KB5046615 supersedes October 2024 cumulative update KB5044277.
- KB5046615 corresponds to server build 17763.6532.
- Windows Server 2019 is impacted by two zero-day vulnerabilities.
- CVE-2024-43451 (CVSS 6.5 out of 10) is a zero-day NTLM Hash Disclosure Spoofing Vulnerability. It’s patched in KB5046615.
- CVE-2024-49039 (CVSS 8.8 out of 10) is a zero-day Windows Task Scheduler Elevation of Privilege Vulnerability. It is patched in KB5046615.
- 28 security vulnerabilities have been reported in November security bulletin for Windows Server 2019.
- One of these 29 vulnerabilities has a CRITICAL severity.
- CVE-2024-43639 is a CVSS 9.8 Remote Code Execution vulnerability. It impacts the Windows Server 2019.
- The Servicing Stack Update corresponding to KB5046615 is KB5043126 (17763.6289). It is in-built in the main cumulative update. Separate installation of the SSU or Servicing Stack is not needed.
- KB5005112 is the SSU that must be already deployed on Windows Server 2019. If you have not deployed this SSU, please download KB5005112 and apply on the server. SSU installation does not cause server reboot.
Download KB5046615
You may download the offline installer file for KB5046615 from the catalog site link shared below:
Upon installation of KB5046615, the server would restart.
Changelog – KB5046615
The following changes or improvements are part of KB5046615 for Windows Server 2019:
- [vmswitch] Fixed: A vmswitch triggers a stop error. This occurs when you use Load Balancing and Failover (LBFO) teaming with two virtual switches on a virtual machine (VM). In this case, one virtual switch uses single root Input/Output virtualization (SR-IOV).
- [Windows Kernel Vulnerable Driver Blocklist file (DriverSiPolicy.p7b)] Fixed: This update adds to the list of drivers that are at risk for Bring Your Own Vulnerable Driver (BYOVD) attacks.
Rajesh Dhawan is a technology professional who loves to write about Cyber-security events and stories, Cloud computing and Microsoft technologies. He loves to break complex problems into manageable chunks of meaningful information.