KB5012170 - Clarification - Check Script Still Says Vulnerable

RickAZEP 0 Reputation points
2024-03-29T14:38:57.49+00:00

Looking to see if anyone has some clarification on the BOOTHOLE vulnerability remediation:

  • Test Box: Windows 10 Pro 22H2 - 19045.4046

Microsoft appears to have released KB5012170 in order to close this vulnerability, which my test systems shows as installed if do a Get-HotFix list from Powershell.

https://support.microsoft.com/en-us/topic/kb5012170-security-update-for-secure-boot-dbx-72ff5eed-25b4-47c7-be28-c42bd211bb15

However, looking at the advisory, Microsoft recommends running a check via Powershell. My test system returns TRUE, so I expect the system is still vulnerable even though the KB is installed?

https://msrc.microsoft.com/update-guide/en-US/advisory/ADV200011

Am I missing something? Do I still need to go through the manual application as described in this article, or does the 5012170 protect the system regardless?

https://support.microsoft.com/en-us/topic/microsoft-guidance-for-applying-secure-boot-dbx-update-kb4575994-e3b9e4cb-a330-b3ba-a602-15083965d9ca

Thanks!

Rick

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
10,592 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,748 questions
0 comments No comments
{count} votes