Recommended way to fix vulnerabilities and CVE in Microsoft Windows Server 2019 Standard Evaluation

Question

Recommended way to fix vulnerabilities and CVE in Microsoft Windows Server 2019 Standard Evaluation

Vikash Kumar Chaudhary 21

Hello Folks,

I am using Microsoft Windows Server 2019 Standard Evaluation .

Recently, scanned this server and found the following vulnerabilities:

Critical count : 4

High count : 5

Medium count : 9

But the catch here is that in each critical count vulnerability there are multiple CVE

So, inspite of having 4 crititical vulnerability , I have 190 CVE vulnerability.

What is the recommended way to fix all these vulnerabilities?

Am I supposed to resolve each CVE separately or is there any other method .

Note: I am using Microsoft Catalog Update. It makes one package update manually. But I am facing an issue over there.

Please help me to resolve these issues.

Thanks.

Answer 1

Dave Patrick 354.3K MVP

June 14, 2022—KB5014692 (OS Build 17763.3046)
August 9, 2022—KB5016623 (OS Build 17763.3287)
September 13, 2022—KB5017315 (OS Build 17763.3406)
July 12, 2022—KB5015811 (OS Build 17763.3165)

Updates are now cumulative so the current monthly update contains new fixes plus all of those from previous monthly updates. So you're good to go. "update is not applicable" is normal and expected behavior when trying to install an older build rollup.

--please don't forget to upvote and Accept as answer if the reply is helpful--

Vikash Kumar Chaudhary 21 Reputation points

2022-11-20T18:49:44.613+00:00

Hello Patrick,

So does this mean that there is no need for the above updates ??
And what is the most recent current monthly update available and from where can I get that update.

Please let me know.

Thanks & Regards.
Dave Patrick 354.3K Reputation points MVP

2022-11-20T18:56:18.887+00:00

Yes, that's correct. There is one more you could get. This OOB update November 17, 2022—KB5021655 (OS Build 17763.3653) Out-of-band
Vikash Kumar Chaudhary 21 Reputation points

2022-11-20T19:02:54.03+00:00

Hello Patrick,

Thanks for the support.
Dave Patrick 354.3K Reputation points MVP

2022-11-20T19:05:25.81+00:00

You're quite welcome.

Answer 2

Dave Patrick 354.3K MVP

What is the recommended way to fix all these vulnerabilities?

In general patch it fully.

As to the "not applicable" what is the current build number?

Dave Patrick 354.3K Reputation points MVP

2022-11-19T13:21:20.707+00:00

Just checking if there's any progress or updates?

--please don't forget to upvote and Accept as answer if the reply is helpful--
Vikash Kumar Chaudhary 21 Reputation points

2022-11-20T18:23:49.31+00:00

Hello Patrick,

My Windows Server 2019 Version 1809 is OS Build 17763.3650

I am unable to patch the following vulnerabilities:
KB5014692
KB5016623
KB5017315
KB5017315
KB5015811

Please help me to resolve these vulnerabilities.
I am getting the following message while updating the above packages:

Thanks and regards.

Recommended way to fix vulnerabilities and CVE in Microsoft Windows Server 2019 Standard Evaluation

1 additional answer

Activity