EXECUTIVE SUMMARY:
In addition to April’s Patch Tuesday update, Microsoft has rolled out new Windows 10 21H1 builds to the Windows Insider Beta and Release Preview Channels.
Yesterday, the company disclosed 114 security vulnerabilities. This roster includes 19 classified as critical, one flaw listed as under active attack and two remote code execution vulnerabilities located in Exchange Server (CVE-2020-28480 and CVE-2021-28481).
Windows 10 updates
In conjunction with the new Windows 10 21H1 preview build number 19043.928, experts have seen security updates and quality improvements.
In November, Microsoft began to address the Kerberos service ticket issue related to the Active Director Domain controllers. This patch includes a fix. The RemoteFX vGPU and other past Windows updates with security flaws have also been removed entirely, according to Microsoft’s support page.
In addition, another notable security flaw that this update smoothed over included an elevation of privilege issue. It had to do with the way in which Azure Active Director web sign-in permits “…arbitrary browsing from the third-party endpoints used for federated authentication”.
More April Patch Tuesday fixes
This April Patch Tuesday also included security updates for Windows App Platform and Frameworks, Windows Apps, Windows Input and Composition, Windows Office Media, Windows Cryptography, Windows AI Platform, Windows Virtualization, Internet Explorer, Windows Kernel, Windows Media and more.
Insiders reported receiving an 0x800f081f error as they attempted to install an early release of KB5000842. If error messages continue within this new build, Microsoft requests customer feedback via its Feedback Hub.
New builds for Windows 10 versions 2004 and 20H2 have also been released. This bumps up the latest builds to 19041.928 and 18042.928.
In late March, Microsoft presented previews of an update that eliminated the legacy Edge browser on Windows 10 20H2. It also resolved a printer issue in Windows 10 21H1.
Microsoft is closing the window of opportunity for hackers. For further information about the latest Windows 10 updates, visit ZDNet.com.
