Warning: Vulnerabilities in Microsoft Windows Security Update for November
11th November 2022
Together with their monthly security updates for Windows, Microsoft has also rolled out the first patches for the vulnerabilities CVE-2022-38023 (Netlogon) as well as CVE-2022-37967 and CVE-2022-37966 (Windows Kerberos) for many client and server operating systems, on November 8th.
Initial internal tests carried out by VIVAVIS, however, revealed that these patches cause massive system disruptions and even a total breakdown of systems. We therefore issue a warning against the following patches and urgently recommend suspending the roll-out of these patches immediately:
• KB5020805: How to manage Kerberos protocol changes related to CVE-2022-37967
• KB5021130: How to manage the Netlogon protocol changes related to CVE-2022-38023
• KB5021131: How to manage the Kerberos protocol changes related to CVE-2022-37966
Further information about the patches and first problem reports can be found here.
If you have further questions on this matter or if you require support, please contact our Customer Support.
Our RSS feed always keeps you up to date! This way, you’ll receive same-day notification when a new article has been posted to the IT Security Bulletin. Just enter the following link in your feed reader:
You can find out how to integrate the RSS feed into Outlook here.