How to check respective patch for the Virtual machine in the Azure

Varma 635 Reputation points
2024-01-31T05:21:13.7533333+00:00

Is this patch: https://support.microsoft.com/kb/5028171 resolves below vulnerability? Microsoft CVE-2023-36874: Windows Error Reporting Service Elevation of Privilege Vulnerability and second question, how to know whether above patch is installed on Virtual machine? Please suggest is there any way to find out?

Azure Update Manager
Azure Update Manager
An Azure service to centrally manages updates and compliance at scale.
186 questions
0 comments No comments
{count} votes

Accepted answer
  1. SwathiDhanwada-MSFT 16,571 Reputation points
    2024-02-01T06:13:55.2966667+00:00

    @Varma From the article [ https://support.microsoft.com/kb/5028171 ], it doesn't resolve the vulnerability you are referring to.

    To know the updates that need to be installed to resolve the Microsoft CVE-2023-36874: Windows Error Reporting Service Elevation of Privilege Vulnerability, you can refer this document. Based on your operating system, choose the respective download and install on the vm.

    For instance, for operating system "Windows Server 2012 R2 (Server Core installation)", there has been announced two roll ups: Monthly roll up and Security Roll up. To fix the vulnerability in Windows Server 2012 R2 (Server Core installation) os, you need to install KB5028223.

    To check if the any patch is installed on a virtual machine, you can use the following steps:

    1. Connect to the virtual machine using Remote Desktop or another remote access tool.
    2. Open the Control Panel and navigate to Programs and Features.
    3. Click on the "View installed updates" link on the left-hand side of the window.
    4. Look for the respective patch in the list of installed updates. If it is installed, it will be listed with the other updates.

0 additional answers

Sort by: Most helpful