Microsoft April 2024 Security Updates

Security 10757 Published 2024-04-09 20:08 by Philipp Esselbach

News

The April 2024 edition of Microsoft's security updates has been made available to the public. In total, there are 149 Microsoft CVEs included in this release.

Security Update Guide - Microsoft Security Response Center

This release consists of the following 149 Microsoft CVEs:

Tag CVE Base Score FAQs? Workarounds? Mitigations?
Windows BitLocker CVE-2024-20665 6.1 Yes No No
Windows Secure Boot CVE-2024-20669 6.7 Yes No No
Microsoft Office Outlook CVE-2024-20670 Yes No No
Windows Remote Procedure Call CVE-2024-20678 8.8 Yes No No
Azure Private 5G Core CVE-2024-20685 5.9 Yes No No
Windows Secure Boot CVE-2024-20688 7.1 Yes No No
Windows Secure Boot CVE-2024-20689 7.1 Yes No No
Windows Kernel CVE-2024-20693 7.8 Yes No No
Microsoft Defender for IoT CVE-2024-21322 7.2 Yes No No
Microsoft Defender for IoT CVE-2024-21323 8.8 Yes No No
Microsoft Defender for IoT CVE-2024-21324 7.2 Yes No No
.NET and Visual Studio CVE-2024-21409 7.3 Yes No No
Azure Compute Gallery CVE-2024-21424 6.5 Yes No No
Windows Authentication Methods CVE-2024-21447 7.8 Yes No No
Microsoft Install Service CVE-2024-26158 7.8 Yes No No
Windows Secure Boot CVE-2024-26168 6.8 Yes No No
Windows Secure Boot CVE-2024-26171 6.7 Yes No No
Windows DWM Core Library CVE-2024-26172 5.5 Yes No No
Windows Secure Boot CVE-2024-26175 7.8 Yes No No
Windows Routing and Remote Access Service (RRAS) CVE-2024-26179 8.8 Yes No No
Windows Secure Boot CVE-2024-26180 8.0 Yes No No
Windows Kerberos CVE-2024-26183 6.5 No No No
Windows Secure Boot CVE-2024-26189 8.0 Yes No No
Azure Migrate CVE-2024-26193 6.4 Yes No No
Windows Secure Boot CVE-2024-26194 7.4 Yes No No
Windows DHCP Server CVE-2024-26195 7.2 Yes No No
Windows Routing and Remote Access Service (RRAS) CVE-2024-26200 8.8 Yes No No
Windows DHCP Server CVE-2024-26202 7.2 Yes No No
Windows Routing and Remote Access Service (RRAS) CVE-2024-26205 8.8 Yes No No
Windows Remote Access Connection Manager CVE-2024-26207 5.5 Yes No No
Windows Message Queuing CVE-2024-26208 7.2 Yes No No
Windows Local Security Authority Subsystem Service (LSASS) CVE-2024-26209 5.5 Yes No No
Microsoft WDAC OLE DB provider for SQL CVE-2024-26210 8.8 Yes No No
Windows Remote Access Connection Manager CVE-2024-26211 7.8 Yes No No
Windows DHCP Server CVE-2024-26212 7.5 No No No
Microsoft Brokering File System CVE-2024-26213 7.0 Yes No No
Microsoft WDAC ODBC Driver CVE-2024-26214 8.8 Yes No No
Windows DHCP Server CVE-2024-26215 7.5 No No No
Windows File Server Resource Management Service CVE-2024-26216 7.3 Yes No No
Windows Remote Access Connection Manager CVE-2024-26217 5.5 Yes No No
Windows Kernel CVE-2024-26218 7.8 Yes No No
Windows HTTP.sys CVE-2024-26219 7.5 No No No
Windows Mobile Hotspot CVE-2024-26220 5.0 Yes No No
Role: DNS Server CVE-2024-26221 7.2 Yes No No
Role: DNS Server CVE-2024-26222 7.2 Yes No No
Role: DNS Server CVE-2024-26223 7.2 Yes No No
Role: DNS Server CVE-2024-26224 7.2 Yes No No
Windows Distributed File System (DFS) CVE-2024-26226 6.5 Yes No No
Role: DNS Server CVE-2024-26227 7.2 Yes No No
Windows Cryptographic Services CVE-2024-26228 7.8 Yes No No
Windows Kernel CVE-2024-26229 7.8 Yes No No
Windows Remote Access Connection Manager CVE-2024-26230 7.8 Yes No No
Role: DNS Server CVE-2024-26231 7.2 Yes No No
Windows Message Queuing CVE-2024-26232 7.3 Yes No Yes
Role: DNS Server CVE-2024-26233 7.2 Yes No No
Windows Proxy Driver CVE-2024-26234 6.7 No No No
Windows Update Stack CVE-2024-26235 7.8 Yes No No
Windows Update Stack CVE-2024-26236 7.0 Yes No No
Windows Defender Credential Guard CVE-2024-26237 7.8 Yes No No
Windows Remote Access Connection Manager CVE-2024-26239 7.8 Yes No No
Windows Secure Boot CVE-2024-26240 8.0 Yes No No
Windows Win32K - ICOMP CVE-2024-26241 7.8 Yes No No
Windows Telephony Server CVE-2024-26242 7.0 Yes No No
Windows USB Print Driver CVE-2024-26243 7.0 Yes No No
Microsoft WDAC OLE DB provider for SQL CVE-2024-26244 8.8 Yes No No
Windows Kernel CVE-2024-26245 7.8 Yes No No
Windows Kerberos CVE-2024-26248 7.5 Yes No No
Windows Secure Boot CVE-2024-26250 6.7 Yes No No
Microsoft Office SharePoint CVE-2024-26251 6.8 Yes No No
Windows Internet Connection Sharing (ICS) CVE-2024-26252 6.8 Yes No No
Windows Internet Connection Sharing (ICS) CVE-2024-26253 6.8 Yes No No
Windows Virtual Machine Bus CVE-2024-26254 7.5 No No No
Windows Remote Access Connection Manager CVE-2024-26255 5.5 Yes No No
Windows Compressed Folder CVE-2024-26256 7.8 Yes No No
Microsoft Office Excel CVE-2024-26257 7.8 Yes No No
Windows Secure Boot CVE-2024-28896 7.5 Yes No No
Windows Secure Boot CVE-2024-28897 6.8 Yes No No
Windows Secure Boot CVE-2024-28898 6.3 Yes No No
Windows Remote Access Connection Manager CVE-2024-28900 5.5 Yes No No
Windows Remote Access Connection Manager CVE-2024-28901 5.5 Yes No No
Windows Remote Access Connection Manager CVE-2024-28902 5.5 Yes No No
Windows Secure Boot CVE-2024-28903 6.7 Yes No No
Microsoft Brokering File System CVE-2024-28904 7.8 Yes No No
Microsoft Brokering File System CVE-2024-28905 7.8 Yes No No
SQL Server CVE-2024-28906 8.8 Yes No No
Microsoft Brokering File System CVE-2024-28907 7.8 Yes No No
SQL Server CVE-2024-28908 8.8 Yes No No
SQL Server CVE-2024-28909 8.8 Yes No No
SQL Server CVE-2024-28910 8.8 Yes No No
SQL Server CVE-2024-28911 8.8 Yes No No
SQL Server CVE-2024-28912 8.8 Yes No No
SQL Server CVE-2024-28913 8.8 Yes No No
SQL Server CVE-2024-28914 8.8 Yes No No
SQL Server CVE-2024-28915 8.8 Yes No No
Azure Arc CVE-2024-28917 6.2 Yes No No
Windows Secure Boot CVE-2024-28919 6.7 Yes No No
Windows Secure Boot CVE-2024-28920 7.8 Yes No No
Windows Secure Boot CVE-2024-28921 6.7 Yes No No
Windows Secure Boot CVE-2024-28922 4.1 Yes No No
Windows Secure Boot CVE-2024-28923 6.4 Yes No No
Windows Secure Boot CVE-2024-28924 6.7 Yes No No
Windows Secure Boot CVE-2024-28925 8.0 Yes No No
SQL Server CVE-2024-28926 8.8 Yes No No
SQL Server CVE-2024-28927 8.8 Yes No No
SQL Server CVE-2024-28929 8.8 Yes No No
SQL Server CVE-2024-28930 8.8 Yes No No
SQL Server CVE-2024-28931 8.8 Yes No No
SQL Server CVE-2024-28932 8.8 Yes No No
SQL Server CVE-2024-28933 8.8 Yes No No
SQL Server CVE-2024-28934 8.8 Yes No No
SQL Server CVE-2024-28935 8.8 Yes No No
SQL Server CVE-2024-28936 8.8 Yes No No
SQL Server CVE-2024-28937 8.8 Yes No No
SQL Server CVE-2024-28938 8.8 Yes No No
SQL Server CVE-2024-28939 8.8 Yes No No
SQL Server CVE-2024-28940 8.8 Yes No No
SQL Server CVE-2024-28941 8.8 Yes No No
SQL Server CVE-2024-28942 8.8 Yes No No
SQL Server CVE-2024-28943 8.8 Yes No No
SQL Server CVE-2024-28944 8.8 Yes No No
SQL Server CVE-2024-28945 8.8 Yes No No
SQL Server CVE-2024-29043 8.8 Yes No No
SQL Server CVE-2024-29044 8.8 Yes No No
SQL Server CVE-2024-29045 7.5 Yes No No
SQL Server CVE-2024-29046 8.8 Yes No No
SQL Server CVE-2024-29047 8.8 Yes No No
SQL Server CVE-2024-29048 8.8 Yes No No
Microsoft Edge (Chromium-based) CVE-2024-29049 4.1 Yes No No
Windows Cryptographic Services CVE-2024-29050 8.4 Yes No No
Windows Storage CVE-2024-29052 7.8 Yes No No
Microsoft Defender for IoT CVE-2024-29053 8.8 Yes No No
Microsoft Defender for IoT CVE-2024-29054 7.2 Yes No No
Microsoft Defender for IoT CVE-2024-29055 7.2 Yes No No
Windows Authentication Methods CVE-2024-29056 4.3 Yes No No
Windows Secure Boot CVE-2024-29061 7.8 Yes No No
Windows Secure Boot CVE-2024-29062 7.1 Yes No No
Azure AI Search CVE-2024-29063 7.3 Yes No No
Role: Windows Hyper-V CVE-2024-29064 6.2 No No No
Windows Distributed File System (DFS) CVE-2024-29066 7.2 Yes No No
Microsoft Edge (Chromium-based) CVE-2024-29981 4.3 Yes No No
SQL Server CVE-2024-29982 8.8 Yes No No
SQL Server CVE-2024-29983 8.8 Yes No No
SQL Server CVE-2024-29984 8.8 Yes No No
SQL Server CVE-2024-29985 8.8 Yes No No
Internet Shortcut Files CVE-2024-29988 8.8 Yes No No
Azure Monitor CVE-2024-29989 8.4 Yes No No
Microsoft Azure Kubernetes Service CVE-2024-29990 9.0 Yes No No
Azure SDK CVE-2024-29992 8.0 Yes No No
Azure CVE-2024-29993 Yes No No

We are republising 6 non-Microsoft CVEs:

CNA Tag CVE FAQs? Workarounds? Mitigations?
Intel Corporation Intel CVE-2024-2201 Yes No No
Lenovo Windows Secure Boot CVE-2024-23593 Yes No No
Lenovo Windows Secure Boot CVE-2024-23594 Yes No No
Chrome Microsoft Edge (Chromium-based) CVE-2024-3156 Yes No No
Chrome Microsoft Edge (Chromium-based) CVE-2024-3158 Yes No No
Chrome Microsoft Edge (Chromium-based) CVE-2024-3159 Yes No No

Security Update Guide Blog Posts

Date Blog Post
April 9, 2024 Toward greater transparency: Security Update Guide now shares CWEs for CVEs
January 11, 2022 Coming Soon: New Security Update Guide Notification System
February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API
January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners
December 8, 2020 Security Update Guide: Let’s keep the conversation going
November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide

Relevant Resources

The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.

Windows 10 and Windows 11 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10 and Windows 11, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 and Windows 11 operating systems, please see Windows Lifecycle Facts Sheet.

Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.

A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.

In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

Customers running Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

Known Issues

You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.

For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).

KB Article Applies To
5036892 Windows 10, version 21H2, Windows 10, version 22H2
5036932 Windows Server 2008 (Monthly Rollup)
5036950 Windows Server 2008 (Security-only update)

Security Update Guide - Microsoft Security Response Center

Tag	CVE	Base Score	FAQs?	Workarounds?	Mitigations?
Windows BitLocker	CVE-2024-20665	6.1	Yes	No	No
Windows Secure Boot	CVE-2024-20669	6.7	Yes	No	No
Microsoft Office Outlook	CVE-2024-20670		Yes	No	No
Windows Remote Procedure Call	CVE-2024-20678	8.8	Yes	No	No
Azure Private 5G Core	CVE-2024-20685	5.9	Yes	No	No
Windows Secure Boot	CVE-2024-20688	7.1	Yes	No	No
Windows Secure Boot	CVE-2024-20689	7.1	Yes	No	No
Windows Kernel	CVE-2024-20693	7.8	Yes	No	No
Microsoft Defender for IoT	CVE-2024-21322	7.2	Yes	No	No
Microsoft Defender for IoT	CVE-2024-21323	8.8	Yes	No	No
Microsoft Defender for IoT	CVE-2024-21324	7.2	Yes	No	No
.NET and Visual Studio	CVE-2024-21409	7.3	Yes	No	No
Azure Compute Gallery	CVE-2024-21424	6.5	Yes	No	No
Windows Authentication Methods	CVE-2024-21447	7.8	Yes	No	No
Microsoft Install Service	CVE-2024-26158	7.8	Yes	No	No
Windows Secure Boot	CVE-2024-26168	6.8	Yes	No	No
Windows Secure Boot	CVE-2024-26171	6.7	Yes	No	No
Windows DWM Core Library	CVE-2024-26172	5.5	Yes	No	No
Windows Secure Boot	CVE-2024-26175	7.8	Yes	No	No
Windows Routing and Remote Access Service (RRAS)	CVE-2024-26179	8.8	Yes	No	No
Windows Secure Boot	CVE-2024-26180	8.0	Yes	No	No
Windows Kerberos	CVE-2024-26183	6.5	No	No	No
Windows Secure Boot	CVE-2024-26189	8.0	Yes	No	No
Azure Migrate	CVE-2024-26193	6.4	Yes	No	No
Windows Secure Boot	CVE-2024-26194	7.4	Yes	No	No
Windows DHCP Server	CVE-2024-26195	7.2	Yes	No	No
Windows Routing and Remote Access Service (RRAS)	CVE-2024-26200	8.8	Yes	No	No
Windows DHCP Server	CVE-2024-26202	7.2	Yes	No	No
Windows Routing and Remote Access Service (RRAS)	CVE-2024-26205	8.8	Yes	No	No
Windows Remote Access Connection Manager	CVE-2024-26207	5.5	Yes	No	No
Windows Message Queuing	CVE-2024-26208	7.2	Yes	No	No
Windows Local Security Authority Subsystem Service (LSASS)	CVE-2024-26209	5.5	Yes	No	No
Microsoft WDAC OLE DB provider for SQL	CVE-2024-26210	8.8	Yes	No	No
Windows Remote Access Connection Manager	CVE-2024-26211	7.8	Yes	No	No
Windows DHCP Server	CVE-2024-26212	7.5	No	No	No
Microsoft Brokering File System	CVE-2024-26213	7.0	Yes	No	No
Microsoft WDAC ODBC Driver	CVE-2024-26214	8.8	Yes	No	No
Windows DHCP Server	CVE-2024-26215	7.5	No	No	No
Windows File Server Resource Management Service	CVE-2024-26216	7.3	Yes	No	No
Windows Remote Access Connection Manager	CVE-2024-26217	5.5	Yes	No	No
Windows Kernel	CVE-2024-26218	7.8	Yes	No	No
Windows HTTP.sys	CVE-2024-26219	7.5	No	No	No
Windows Mobile Hotspot	CVE-2024-26220	5.0	Yes	No	No
Role: DNS Server	CVE-2024-26221	7.2	Yes	No	No
Role: DNS Server	CVE-2024-26222	7.2	Yes	No	No
Role: DNS Server	CVE-2024-26223	7.2	Yes	No	No
Role: DNS Server	CVE-2024-26224	7.2	Yes	No	No
Windows Distributed File System (DFS)	CVE-2024-26226	6.5	Yes	No	No
Role: DNS Server	CVE-2024-26227	7.2	Yes	No	No
Windows Cryptographic Services	CVE-2024-26228	7.8	Yes	No	No
Windows Kernel	CVE-2024-26229	7.8	Yes	No	No
Windows Remote Access Connection Manager	CVE-2024-26230	7.8	Yes	No	No
Role: DNS Server	CVE-2024-26231	7.2	Yes	No	No
Windows Message Queuing	CVE-2024-26232	7.3	Yes	No	Yes
Role: DNS Server	CVE-2024-26233	7.2	Yes	No	No
Windows Proxy Driver	CVE-2024-26234	6.7	No	No	No
Windows Update Stack	CVE-2024-26235	7.8	Yes	No	No
Windows Update Stack	CVE-2024-26236	7.0	Yes	No	No
Windows Defender Credential Guard	CVE-2024-26237	7.8	Yes	No	No
Windows Remote Access Connection Manager	CVE-2024-26239	7.8	Yes	No	No
Windows Secure Boot	CVE-2024-26240	8.0	Yes	No	No
Windows Win32K - ICOMP	CVE-2024-26241	7.8	Yes	No	No
Windows Telephony Server	CVE-2024-26242	7.0	Yes	No	No
Windows USB Print Driver	CVE-2024-26243	7.0	Yes	No	No
Microsoft WDAC OLE DB provider for SQL	CVE-2024-26244	8.8	Yes	No	No
Windows Kernel	CVE-2024-26245	7.8	Yes	No	No
Windows Kerberos	CVE-2024-26248	7.5	Yes	No	No
Windows Secure Boot	CVE-2024-26250	6.7	Yes	No	No
Microsoft Office SharePoint	CVE-2024-26251	6.8	Yes	No	No
Windows Internet Connection Sharing (ICS)	CVE-2024-26252	6.8	Yes	No	No
Windows Internet Connection Sharing (ICS)	CVE-2024-26253	6.8	Yes	No	No
Windows Virtual Machine Bus	CVE-2024-26254	7.5	No	No	No
Windows Remote Access Connection Manager	CVE-2024-26255	5.5	Yes	No	No
Windows Compressed Folder	CVE-2024-26256	7.8	Yes	No	No
Microsoft Office Excel	CVE-2024-26257	7.8	Yes	No	No
Windows Secure Boot	CVE-2024-28896	7.5	Yes	No	No
Windows Secure Boot	CVE-2024-28897	6.8	Yes	No	No
Windows Secure Boot	CVE-2024-28898	6.3	Yes	No	No
Windows Remote Access Connection Manager	CVE-2024-28900	5.5	Yes	No	No
Windows Remote Access Connection Manager	CVE-2024-28901	5.5	Yes	No	No
Windows Remote Access Connection Manager	CVE-2024-28902	5.5	Yes	No	No
Windows Secure Boot	CVE-2024-28903	6.7	Yes	No	No
Microsoft Brokering File System	CVE-2024-28904	7.8	Yes	No	No
Microsoft Brokering File System	CVE-2024-28905	7.8	Yes	No	No
SQL Server	CVE-2024-28906	8.8	Yes	No	No
Microsoft Brokering File System	CVE-2024-28907	7.8	Yes	No	No
SQL Server	CVE-2024-28908	8.8	Yes	No	No
SQL Server	CVE-2024-28909	8.8	Yes	No	No
SQL Server	CVE-2024-28910	8.8	Yes	No	No
SQL Server	CVE-2024-28911	8.8	Yes	No	No
SQL Server	CVE-2024-28912	8.8	Yes	No	No
SQL Server	CVE-2024-28913	8.8	Yes	No	No
SQL Server	CVE-2024-28914	8.8	Yes	No	No
SQL Server	CVE-2024-28915	8.8	Yes	No	No
Azure Arc	CVE-2024-28917	6.2	Yes	No	No
Windows Secure Boot	CVE-2024-28919	6.7	Yes	No	No
Windows Secure Boot	CVE-2024-28920	7.8	Yes	No	No
Windows Secure Boot	CVE-2024-28921	6.7	Yes	No	No
Windows Secure Boot	CVE-2024-28922	4.1	Yes	No	No
Windows Secure Boot	CVE-2024-28923	6.4	Yes	No	No
Windows Secure Boot	CVE-2024-28924	6.7	Yes	No	No
Windows Secure Boot	CVE-2024-28925	8.0	Yes	No	No
SQL Server	CVE-2024-28926	8.8	Yes	No	No
SQL Server	CVE-2024-28927	8.8	Yes	No	No
SQL Server	CVE-2024-28929	8.8	Yes	No	No
SQL Server	CVE-2024-28930	8.8	Yes	No	No
SQL Server	CVE-2024-28931	8.8	Yes	No	No
SQL Server	CVE-2024-28932	8.8	Yes	No	No
SQL Server	CVE-2024-28933	8.8	Yes	No	No
SQL Server	CVE-2024-28934	8.8	Yes	No	No
SQL Server	CVE-2024-28935	8.8	Yes	No	No
SQL Server	CVE-2024-28936	8.8	Yes	No	No
SQL Server	CVE-2024-28937	8.8	Yes	No	No
SQL Server	CVE-2024-28938	8.8	Yes	No	No
SQL Server	CVE-2024-28939	8.8	Yes	No	No
SQL Server	CVE-2024-28940	8.8	Yes	No	No
SQL Server	CVE-2024-28941	8.8	Yes	No	No
SQL Server	CVE-2024-28942	8.8	Yes	No	No
SQL Server	CVE-2024-28943	8.8	Yes	No	No
SQL Server	CVE-2024-28944	8.8	Yes	No	No
SQL Server	CVE-2024-28945	8.8	Yes	No	No
SQL Server	CVE-2024-29043	8.8	Yes	No	No
SQL Server	CVE-2024-29044	8.8	Yes	No	No
SQL Server	CVE-2024-29045	7.5	Yes	No	No
SQL Server	CVE-2024-29046	8.8	Yes	No	No
SQL Server	CVE-2024-29047	8.8	Yes	No	No
SQL Server	CVE-2024-29048	8.8	Yes	No	No
Microsoft Edge (Chromium-based)	CVE-2024-29049	4.1	Yes	No	No
Windows Cryptographic Services	CVE-2024-29050	8.4	Yes	No	No
Windows Storage	CVE-2024-29052	7.8	Yes	No	No
Microsoft Defender for IoT	CVE-2024-29053	8.8	Yes	No	No
Microsoft Defender for IoT	CVE-2024-29054	7.2	Yes	No	No
Microsoft Defender for IoT	CVE-2024-29055	7.2	Yes	No	No
Windows Authentication Methods	CVE-2024-29056	4.3	Yes	No	No
Windows Secure Boot	CVE-2024-29061	7.8	Yes	No	No
Windows Secure Boot	CVE-2024-29062	7.1	Yes	No	No
Azure AI Search	CVE-2024-29063	7.3	Yes	No	No
Role: Windows Hyper-V	CVE-2024-29064	6.2	No	No	No
Windows Distributed File System (DFS)	CVE-2024-29066	7.2	Yes	No	No
Microsoft Edge (Chromium-based)	CVE-2024-29981	4.3	Yes	No	No
SQL Server	CVE-2024-29982	8.8	Yes	No	No
SQL Server	CVE-2024-29983	8.8	Yes	No	No
SQL Server	CVE-2024-29984	8.8	Yes	No	No
SQL Server	CVE-2024-29985	8.8	Yes	No	No
Internet Shortcut Files	CVE-2024-29988	8.8	Yes	No	No
Azure Monitor	CVE-2024-29989	8.4	Yes	No	No
Microsoft Azure Kubernetes Service	CVE-2024-29990	9.0	Yes	No	No
Azure SDK	CVE-2024-29992	8.0	Yes	No	No
Azure	CVE-2024-29993		Yes	No	No

Date	Blog Post
April 9, 2024	Toward greater transparency: Security Update Guide now shares CWEs for CVEs
January 11, 2022	Coming Soon: New Security Update Guide Notification System
February 9, 2021	Continuing to Listen: Good News about the Security Update Guide API
January 13, 2021	Security Update Guide Supports CVEs Assigned by Industry Partners
December 8, 2020	Security Update Guide: Let’s keep the conversation going
November 9, 2020	Vulnerability Descriptions in the New Version of the Security Update Guide

KB Article	Applies To
5036892	Windows 10, version 21H2, Windows 10, version 22H2
5036932	Windows Server 2008 (Monthly Rollup)
5036950	Windows Server 2008 (Security-only update)

Alienware m18 R2 Review and more

.NET 7, .NET 8, Python-Pillow updates for Fedora

Microsoft April 2024 Security Updates

Security Update Guide - Microsoft Security Response Center

This release consists of the following 149 Microsoft CVEs:

We are republising 6 non-Microsoft CVEs:

Security Update Guide Blog Posts

Relevant Resources

Known Issues

Windows

Linux

macOS

Community