Windows Server 2022 KB5070884 (OS Build 20348.4297) Out-of-band update released
Microsoft has recently released a crucial out-of-band update for Windows Server 2022, identified as KB5070884 (OS Build 20348.4297). This critical patch includes a range of quality improvements and security fixes designed to enhance the overall stability and security of Windows Server 2022.
The key enhancements included in this cumulative update are based on the October 14, 2025, security update (KB5066782) and address several pressing issues within the operating system. Notably, it addresses a significant remote code execution vulnerability in the Windows Server Update Services (WSUS) reporting web services, identified by CVE-2025-59287.
A complementary component of this update is the Windows Server 2022 servicing stack update, specifically KB5066781, with an OS build of 20348.4285. This essential patch focuses on bolstering the reliability and robustness of the servicing stack – a critical component responsible for installing Windows updates. By ensuring that your devices possess a reliable servicing stack, you can effectively receive and install Microsoft updates without encountering issues.
However, users may encounter certain known issues following the installation of this update or subsequent patches. The inability to view synchronization error details within WSUS's error reporting feature after the update installation is one such problem. This temporary measure is taken to address the aforementioned Remote Code Execution Vulnerability, CVE-2025-59287.
For those seeking more information on servicing stack updates and their significance in ensuring smooth Windows update deployments, Microsoft recommends consulting its comprehensive guide on simplifying on-premises deployment of servicing stack updates.
October 23, 2025—KB5070884 (OS Build 20348.4297) Out-of-band
October 23, 2025—KB5070884 (OS Build 20348.4297) Out-of-band - Microsoft Support
