CVE-2023-24932, shall I deploy the patches on Windows 10?

Question

CVE-2023-24932, shall I deploy the patches on Windows 10?

RSA111 211

Hello Team,

I have recently understood the zero-day vulnerability from one of the forum which is regarding CVE-2023-24932. I have gone through its Microsoft information web page but couldn't figure out whether I shall patch my Windows 10 laptop/VDI's/Desktop? As this may cause boot failure/in place upgrade fail in many of them.

Please help.

Accepted answer

0 additional answers

Your answer

Answer 1

Wesley Li-MSFT 4,576 Microsoft External Staff

Hello,

Fixing the CVE-2023-24932 vulnerability requires undoing the boot manager, which may cause problems with the device's boot configuration, or even restore the device from media.

And May 9, 2023 is only the initial deployment, and the second deployment will be on July 11, 2023. The final implementation time is tentatively scheduled for the first quarter of 2024, and mitigation measures will be added in the future.

So no patch is needed for now.

Hope above information can help you.

RSA111 211 Reputation points

2023-05-16T08:57:10.9166667+00:00

So you mean, when I release the patches for the month of May 2023, should I exclude the patch for this CVE? The KB number is for Windows 10 KB5026361 & for Windows 11 KB5026372?

Your reply is highly appreciated.
Wesley Li-MSFT 4,576 Reputation points Microsoft External Staff

2023-05-17T06:22:57.66+00:00

Yes, exclude Windows Security Update for May 9, 2023
RSA111 211 Reputation points

2023-05-17T08:48:50.4133333+00:00

thank you.

Share via

CVE-2023-24932, shall I deploy the patches on Windows 10?

0 additional answers

Your answer