Patch tracker / KB5040948
KB5040948
Microsoft security update released 2024-07-09. Fixes 38 CVEs.
High
Download KB5040948
Get the official update for KB5040948. The download and file size for each supported product are on the Microsoft Update Catalog page.
Update summary
Released
2024-07-09
CVEs fixed
38
Max CVSS
8.8
Severity
High
Exploitation and severity
Fixes 38 CVEs. Most severe CVSS 8.8 (High). EPSS exploit probability up to 1.8%.
Among the lower half of tracked Microsoft updates by EPSS exploit probability.
What to do
Moderate priority: schedule it in your normal patch cycle. Senserva flags whether KB5040948 is missing on your devices.
CVEs fixed by this update
CVE-2024-20701CVE-2024-21303CVE-2024-21308CVE-2024-21317CVE-2024-21331CVE-2024-21332CVE-2024-21333CVE-2024-21335CVE-2024-21373CVE-2024-21398CVE-2024-21414CVE-2024-21415CVE-2024-21425CVE-2024-21428CVE-2024-21449CVE-2024-28928CVE-2024-35256CVE-2024-35271CVE-2024-35272CVE-2024-37318CVE-2024-37319CVE-2024-37320CVE-2024-37321CVE-2024-37322CVE-2024-37323CVE-2024-37324CVE-2024-37326CVE-2024-37327CVE-2024-37328CVE-2024-37329CVE-2024-37330CVE-2024-37331CVE-2024-37332CVE-2024-37333CVE-2024-37334CVE-2024-37336CVE-2024-38087CVE-2024-38088
Affected products
- Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 (GDR)
- Microsoft SQL Server 2017 for x64-based Systems (GDR)
- Microsoft SQL Server 2019 for x64-based Systems (GDR)
See this and every Microsoft update ranked by real-world risk on the Microsoft Patch Tracker.