An updated version of the February 2024 security update Scan Cab for Windows Server Update Services is available
IMPORTANT: this notice only affects environments where:
- This notice only affects environments where Scan Cab is used to check for update compliance.
- The Scan Cab for the February 2024 security update was deployed before 4:00 PM PST on February 13, 2024.
An updated version of the Scan Cab for the February 2024 security update was made available at approximately 4:00 PM PST on February 13, 2024 for all Windows versions. This replaces the Scan Cab which was released for that same update earlier that day, at 10:00 AM PST.
The new Scan Cab addresses CVE-2024-21397 for Microsoft Azure File Sync Elevation of Privilege Vulnerability. See the additional information section of this message for details.
How this affects your organization:
IT administrators who downloaded the Scan Cab between 10:00 AM PST and 4:00 PM PST on February 13, 2024 should re-acquire and re-deploy their Scan Cab whenever possible, to ensure they have the updated version of Azure File Sync Agent.
No action is required on environments where Scan Cab is not employed. However, please note that there might be non-Microsoft applications which utilize Scan Cab. Review the documentation for any software and update deployment tools which might be in use for your organization to understand if this is applicable in your environment.
What you need to do to prepare:
Administrators might re-deploy the updated Scan Cab via their usual processes. For detailed guidance, see the Additional information section below.
Additional information:
- Updated Scan Cab: Download the new Scan Cab here
- Announcing a smaller WSUS Scan Cab – Microsoft Tech Community: Learn more about WSUS and the Scan Cab process
- Using WUA to Scan for Updates Offline – Win32 apps | Microsoft Docs: Windows Update Agent (WUA) can be used to scan computers for security updates without connecting to Windows Update
- WSUS and the Catalog Site | Microsoft Docs: The Catalog Site used by WSUS to import updates and drivers
- CVE-2024-21397: Details on the vulnerability addressed in the new Scan Cab
Message ID: MC715656
No comments yet