On-premises Identity-related updates and fixes for July 2024

Reading Time: 2 minutes

Windows Serrer

Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses.

This is the list of Identity-related updates and fixes we saw for July 2024:

 

Windows Server 2016

We observed the following update for Windows Server 2016:

The July 9, 2024, update for Windows Server 2016 (KB5040434), updating the OS build number to 14393.7159, is a monthly cumulative update. It includes one Identity-related improvement.

This update addresses a security vulnerability in the Remote Authentication Dial-In User Service (RADIUS) protocol. Because of weak integrity checks in MD5, an attacker might tamper with packets to gain unauthorized access. This vulnerability makes User Datagram Protocol (UDP)-based RADIUS traffic over the Internet nonsecure against packet forgery or modification during transit. For more information about this vulnerability, see CVE-2024-3596.

 

Windows Server 2019

We observed the following update for Windows Server 2019:

KB5040430 July 9, 2024

The July 9, 2024, update for Windows Server 2019 (KB5040430), updating the OS build number to 17763.6054, is a monthly cumulative update. It includes the following Identity-related improvements:

  • This update addresses an issue with Windows Local Administrator Password Solution (LAPS). Its Post Authentication Actions (PAA) do not occur at the end of the grace period. Instead, they occur at restart.
  • This update addresses a security vulnerability in the Remote Authentication Dial-In User Service (RADIUS) protocol. Because of weak integrity checks in MD5, an attacker might tamper with packets to gain unauthorized access. This vulnerability makes User Datagram Protocol (UDP)-based RADIUS traffic over the Internet nonsecure against packet forgery or modification during transit. For more information about this vulnerability, see CVE-2024-3596.

 

Windows Server 2022

We observed the following update for Windows Server 2022:

KB5040437 July 9, 2024

The July 9, 2024, update for Windows Server 2022 (KB5040437), updating the OS build number to 20348.2582, is a monthly cumulative update. It includes the following Identity-related improvements:

  • This update addresses an issue with Windows Local Administrator Password Solution (LAPS). Its Post Authentication Actions (PAA) do not occur at the end of the grace period. Instead, they occur at restart.
  • This update addresses a security vulnerability in the Remote Authentication Dial-In User Service (RADIUS) protocol. Because of weak integrity checks in MD5, an attacker might tamper with packets to gain unauthorized access. This vulnerability makes User Datagram Protocol (UDP)-based RADIUS traffic over the Internet nonsecure against packet forgery or modification during transit. For more information about this vulnerability, see CVE-2024-3596.

leave your comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.