CVE-2023-24932, shall I deploy the patches on Windows 10?

Rahul Sapke 141 Reputation points
2023-05-15T13:30:29.9966667+00:00

Hello Team,

I have recently understood the zero-day vulnerability from one of the forum which is regarding CVE-2023-24932. I have gone through its Microsoft information web page but couldn't figure out whether I shall patch my Windows 10 laptop/VDI's/Desktop? As this may cause boot failure/in place upgrade fail in many of them.

Please help.

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
7,561 questions
0 comments No comments
{count} votes

Accepted answer
  1. Wesley Li-MSFT 1,886 Reputation points Microsoft Vendor
    2023-05-16T08:36:32.21+00:00

    Hello,

    Fixing the CVE-2023-24932 vulnerability requires undoing the boot manager, which may cause problems with the device's boot configuration, or even restore the device from media.

    And May 9, 2023 is only the initial deployment, and the second deployment will be on July 11, 2023. The final implementation time is tentatively scheduled for the first quarter of 2024, and mitigation measures will be added in the future.

    So no patch is needed for now.

    Hope above information can help you.


0 additional answers

Sort by: Most helpful