Incorporating improvements from the June 28, 2024, KB5039304 update, one notable change with KB5040435 involves the User Account Control (UAC) system. Now, reparation of applications using the Windows Installer will prompt users for credentials.
Automation scripts may need updating to display the Shield icon, indicating the requirement for elevated permissions. To bypass this prompt, users can set the registry value
A major issue addressed in this update concerns the Remote Authentication Dial-In User Service (RADIUS) protocol, specifically resolving MD5 collision vulnerabilities. Additional details are available in KB5040268.
This update includes the Windows 11 Servicing Stack Update (KB5039333) for Build 26100.998, crucial for maintaining a stable and reliable servicing stack essential for the application of Microsoft updates.
However, there is an identified issue where Roblox cannot be downloaded and played on Arm devices via the Microsoft Store. A recommended workaround is to download the game directly from the Roblox website.
The KB5040435 update primarily aims at reinforcing security by addressing critical vulnerabilities within Windows 11. Detailed information on the resolved security issues can be found in the Security Update Guide and the July 2024 Security Updates on the Microsoft website. In the meantime, the vulnerabilities addressed in July 2024 Patch Tuesday can be seen below:
CVE ID
Tag
CVE Title
.NET and Visual Studio
.NET Core and Visual Studio Denial of Service Vulnerability
.NET and Visual Studio
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
.NET and Visual Studio
.NET and Visual Studio Remote Code Execution Vulnerability
.NET and Visual Studio
.NET and Visual Studio Denial of Service Vulnerability
Active Directory Rights Management Services
Github: CVE-2024-39684 TenCent RapidJSON Elevation of Privilege Vulnerability
Active Directory Rights Management Services
Github: CVE-2024-38517 TenCent RapidJSON Elevation of Privilege Vulnerability
Azure CycleCloud
Azure CycleCloud Elevation of Privilege Vulnerability
Azure DevOps
Azure DevOps Server Spoofing Vulnerability
Azure DevOps
Azure DevOps Server Spoofing Vulnerability
Azure Kinect SDK
Azure Kinect SDK Remote Code Execution Vulnerability
Azure Network Watcher
Azure Network Watcher VM Extension Elevation of Privilege Vulnerability
Intel
Arm: CVE-2024-37985 Systematic Identification and Characterization of Proprietary Prefetchers
Line Printer Daemon Service (LPD)
Windows Line Printer Daemon Service Denial of Service Vulnerability
Microsoft Defender for IoT
Microsoft Defender for IoT Elevation of Privilege Vulnerability
Microsoft Dynamics
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
Microsoft Graphics Component
Windows Graphics Component Elevation of Privilege Vulnerability
Microsoft Graphics Component
Windows Graphics Component Remote Code Execution Vulnerability
Microsoft Office
Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Outlook
Microsoft Outlook Spoofing Vulnerability
Microsoft Office SharePoint
Microsoft SharePoint Server Remote Code Execution Vulnerability
Microsoft Office SharePoint
Microsoft SharePoint Server Remote Code Execution Vulnerability
Microsoft Office SharePoint
Microsoft SharePoint Server Information Disclosure Vulnerability
Microsoft Office SharePoint
Microsoft SharePoint Remote Code Execution Vulnerability
Microsoft Streaming Service
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
Microsoft Streaming Service
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
Microsoft Streaming Service
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
Microsoft Windows Codecs Library
Microsoft Windows Codecs Library Information Disclosure Vulnerability
Microsoft Windows Codecs Library
Microsoft Windows Codecs Library Information Disclosure Vulnerability
Microsoft WS-Discovery
Microsoft WS-Discovery Denial of Service Vulnerability
NDIS
Windows Network Driver Interface Specification (NDIS) Denial of Service Vulnerability
NPS RADIUS Server
CERT/CC: CVE-2024-3596 RADIUS Protocol Spoofing Vulnerability
Role: Active Directory Certificate Services; Active Directory Domain Services
DCOM Remote Cross-Session Activation Elevation of Privilege Vulnerability
Role: Windows Hyper-V
Windows Hyper-V Elevation of Privilege Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
SQL Server
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Windows BitLocker
BitLocker Security Feature Bypass Vulnerability
Windows COM Session
Windows File Explorer Elevation of Privilege Vulnerability
Windows CoreMessaging
Windows Text Services Framework Elevation of Privilege Vulnerability
Windows Cryptographic Services
Windows Cryptographic Services Security Feature Bypass Vulnerability
Windows DHCP Server
DHCP Server Service Remote Code Execution Vulnerability
Windows Distributed Transaction Coordinator
Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability
Windows Enroll Engine
Windows Enroll Engine Security Feature Bypass Vulnerability
Windows Fax and Scan Service
Windows Fax Service Remote Code Execution Vulnerability
Windows Filtering
Windows Filtering Platform Elevation of Privilege Vulnerability
Windows Image Acquisition
Windows Image Acquisition Elevation of Privilege Vulnerability
Windows Imaging Component
Windows Imaging Component Remote Code Execution Vulnerability
Windows Internet Connection Sharing (ICS)
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
Windows Internet Connection Sharing (ICS)
Windows Layer-2 Bridge Network Driver Remote Code Execution Vulnerability
Windows Internet Connection Sharing (ICS)
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
Windows Internet Connection Sharing (ICS)
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
Windows iSCSI
Windows iSCSI Service Denial of Service Vulnerability
Windows Kernel
Windows Kernel Information Disclosure Vulnerability
Windows Kernel-Mode Drivers
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Windows LockDown Policy (WLDP)
Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability
Windows Message Queuing
Microsoft Message Queuing Information Disclosure Vulnerability
Windows MSHTML Platform
Windows MSHTML Platform Spoofing Vulnerability
Windows MultiPoint Services
Windows MultiPoint Services Remote Code Execution Vulnerability
Windows NTLM
Windows NTLM Spoofing Vulnerability
Windows Online Certificate Status Protocol (OCSP)
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability
Windows Online Certificate Status Protocol (OCSP)
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability
Windows Online Certificate Status Protocol (OCSP)
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability
Windows Performance Monitor
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
Windows Performance Monitor
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
Windows Performance Monitor
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
Windows PowerShell
PowerShell Elevation of Privilege Vulnerability
Windows PowerShell
PowerShell Elevation of Privilege Vulnerability
Windows PowerShell
PowerShell Elevation of Privilege Vulnerability
Windows Remote Access Connection Manager
Windows Remote Access Connection Manager Information Disclosure Vulnerability
Windows Remote Access Connection Manager
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
Windows Remote Desktop
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
Windows Remote Desktop
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
Windows Remote Desktop Licensing Service
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
Windows Remote Desktop Licensing Service
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
Windows Remote Desktop Licensing Service
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
Windows Remote Desktop Licensing Service
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
Windows Remote Desktop Licensing Service
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
Windows Remote Desktop Licensing Service
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Secure Boot
Secure Boot Security Feature Bypass Vulnerability
Windows Server Backup
Microsoft Windows Server Backup Elevation of Privilege Vulnerability
Windows TCP/IP
Windows TCP/IP Information Disclosure Vulnerability
Windows Themes
Windows Themes Spoofing Vulnerability
Windows Win32 Kernel Subsystem
Windows Graphics Component Elevation of Privilege Vulnerability
Windows Win32K – GRFX
Windows Win32k Elevation of Privilege Vulnerability
Windows Win32K – ICOMP
Win32k Elevation of Privilege Vulnerability
Windows Workstation Service
Windows Workstation Service Elevation of Privilege Vulnerability
XBox Crypto Graphic Services
Microsoft Xbox Remote Code Execution Vulnerability
XBox Crypto Graphic Services
Xbox Wireless Adapter Remote Code Execution Vulnerability