Windows 10 March Updates – 8th March 2022

Microsoft released the cumulative security updates for different versions of Windows 10 in March 2022. It has followed up on the cumulative updates by releasing an optional or preview update. The preview update KB5011543 seeks to introduce the search feature on the Windows 10 operating system.

We look at the monthly security updates released for Windows 10 and also list the vulnerabilities that have been resolved on Windows 10 stack. There have been multiple vulnerabilities, including the 3 zero-day vulnerabilities on Windows operating system. These vulnerabilities were shared as part of the March month’s patch Tuesday updates.

Salient points about Windows 10 updates for March 8 2022:

  • 2 Zero-day vulnerabilities affect Windows 10 deployments. These are patched as part of monthly security updates.
  • Download the corresponding version of Windows 10 updates. March month’s Windows 10 update include KB5011485, KB5011487, KB5011491, KB5011495 and KB5011503.
  • Each security update will need a Stacking Service Update to be deployed. If you had already deployed the SSUs, then you can install the March updates directly.
  • No adverse reports have been received from system administrators who deployed the Windows 10 March patches.

Zero-day Vulnerabilities on Windows 10

There are 3 zero-day threats that have been shared in Microsoft’s March updates. We list these below. Two of these zero-day vulnerabilities affect all versions of Windows 10. Patching with the corresponding version of Windows 10 security updates should resolve the issues and threats on Windows 10 workstations.

  • CVE-2022-21990 – this vulnerability affects all versions of Windows 10. It is a CVSS 8.8 remote code execution vulnerability on the Windows Remote Desktop Client software. It is mitigated in the cumulative security updates for Windows 10. Depending on the version of Windows 10, the latest cumulative update would have a different number.
  • CVE-2022-24512 – .NET Remote Code Execution with CVSS score of 6.3. There is a separate patch for resolving the .NET vulnerability. This vulnerability, primarily, affects the Visual Studio and .NET stacks. Security updates can be downloaded through the Visual Studio subscription. .NET security updates are freely available from the Microsoft website.
  • CVE-2022-24459 – Elevation of Privilege vulnerability on Windows Fax and Scan Service. It has a CVSS score of 7.8 with high impact on the affected infrastructure. This vulnerability affects all versions of Windows 10 and it is mitigated in the corresponding security updates for Windows 10.

Windows 10 updates that correspond to each version of the operating system are listed below.

Other vulnerabilities on Windows 10

Aside from the zero-day threats shared above, we have a few vulnerabilities that have a HIGH severity and impact on the affected infrastructure. All these vulnerabilities are more likely to be exploited. The vulnerabilities are patched as part of the ‘Patch Tuesday’ updates of Microsoft for Windows 10. We list these vulnerabilities below for your ready reference.

  • CVE-2022-24508 – CVSS 8.8 – Remote Code Execution vulnerability on SMBv3 server and client compression. This vulnerability affects Windows 10 version 20H2, 21H1 and 21H2. Older deployments of Windows 10 are unaffected. This is patched in KB5011487 for Windows 10 version 20H2, 21H1 and 21H2.

  • CVE-2022-24507- CVSS 7.8 – Elevation of Privilege on Windows Ancillary Function driver. This affects all versions of Windows 10 and is patched as part of KB5011487, KB5011491, KB5011485, KB501495 and KB5011503.

  • CVE-2022-23299 – CVSS 7.8 – Elevation of Privilege on Windows PDEV. It is resolved in KB5011493. This affects all versions of Windows 10 and is patched as part of KB5011487, KB5011491, KB5011485, KB501495 and KB5011503.

  • CVE-2022-23294 – CVSS 8.8 – Remote Code Execution in Windows Event tracking. This affects all versions of Windows 10 and is patched as part of KB5011487, KB5011491, KB5011485, KB501495 and KB5011503.

  • CVE-2022-23286 – CVSS 7 – Elevation of Privileges on Windows Cloud Mini driver. This vulnerability affects Windows 10 version 1809, 1909, 20H2, 21H1 and 21H2. This means that the generic Windows 10 installation and Windows 10 version 1607 are unaffected. The vulnerability is patched in KB5011487, KB5011503 and KB5011485.

  • CVE-2022-23285 – CVSS 8.8 – Remote Code Execution on Remote Desktop client software. This vulnerability affects Windows 10 version 1809, 1909, 20H2, 21H1 and 21H2. This means that the generic Windows 10 installation and Windows 10 version 1607 are unaffected. The vulnerability is patched in KB5011487, KB5011503 and KB5011485.

  • CVE-2022-24502 – CVSS 4.3 – Windows HTML Platforms Security. This affects all versions of Windows 10 and is patched as part of KB5011487, KB5011491, KB5011485, KB501495 and KB5011503.

  • CVE-2022-23253 – CVSS 6.5 – Denial of Service on Point to Point tunnel protocol. This affects all versions of Windows 10 and is patched as part of KB5011487, KB5011491, KB5011485, KB501495 and KB5011503.

How can I get March month security updates for Windows 10?

Windows 10 have multiple versions. Therefore, the cumulative security updates need to correspond to specific versions. Below, we list the security updates for Windows 10 for March 2022.

  • Windows 10 32 bit and x64KB5011491 – KB5011491 is the major update that can be downloaded for 32 bit or x64 based systems. You can download KB5011491 from this page on the Microsoft Update Catalog. Before installing KB5011491, please ensure that you have installed the Servicing Stack Update (SSU) KB5011569. The SSU update files are small in size. KB5011491 can also be updated through Windows Update or the WSUS.
  • Windows 10 version 1607 – KB5011495 – KB5011495 is the cumulative update for Windows 10 version 1607. It can be deployed automatically through Windows Update, Windows Update for Business and WSUS. Or, you can download it manually using the Microsoft Update catalog page here. This is quite a significant update. Before installing the KB5011495 security update, please install the SSU KB5011570 on Windows 10 computers. The SSU KB5011570 can be downloaded from this page.
  • Windows 10 version 1809 – KB5011503 – KB5011503 cumulative security update resolves security issues and implements performance improvements on Windows 10 version 1809. You can download the KB5011503 update from Microsoft Update catalog page here. Before installing KB5011503 security update on Windows 10 version 1809, please install the SSU or Servicing Stack Update KB5005112 on Windows 10. KB5005112 can be downloaded from this page.
  • Windows 10 version 1909 – KB5011485 – KB5011485 cumulative security update resolves security issues on Windows 10 version 1909. The update can be download automatically through Windows Update, Microsoft Update for Business or the WSUS. You can also download the update from the Microsoft Update catalog page here. Before deploying KB5011485, you need to deploy KB5004748 Servicing Stack Update or SSU. KB5004748 can be downloaded from this page on the catalog.
  • Windows 10 version 20H2, 21H1 and 21H2 – KB5011487 – KB5011487 covers the more recent versions of Windows, starting from Windows 10 version 20H2. It also covers version 21H1 and 21H2. The update can be rolled out automatically using the Windows Update program, Windows Update for Business and WSUS. Or, you can patch it manually. KB5011487 can be downloaded from the Microsoft Update Catalog page here. Before installing KB5011487 on Windows 10, you will need to add KB5003173 and KB5005260 updates on Windows 10. Both can be downloaded from the catalog and are a necessary prerequisite before installing KB5011487. The catalog page for KB5003173 is here. And, the catalog page for KB5005260 is here.

Summary

Windows 10 updates for March have been deployed by system administrators and no new issues have been reported post-deployment. You can apply these updates manually or automatically. Each version of Windows 10 has a corresponding security update. We just need to make sure that the incidental SSU or Stacking Service Updates are deployed on Windows 10 before patching with March month updates.

You may also like to read more content relevant to Windows Updates: