Patch tracker / KB5046698
KB5046698
Microsoft security update released 2024-11-12. Fixes 37 CVEs.
CriticalCISA KEVRansomware
Download KB5046698
Get the official update for KB5046698. The download and file size for each supported product are on the Microsoft Update Catalog page.
Update summary
Released
2024-11-12
CVEs fixed
37
Max CVSS
9.8
Severity
Critical
Exploitation and severity
Fixes 37 CVEs. At least one is actively exploited (CISA KEV). Most severe CVSS 9.8 (Critical). EPSS exploit probability up to 82%. One is linked to ransomware.
Among the top 10% of tracked Microsoft updates by EPSS exploit probability.
What to do
Treat as urgent: it is being exploited in the wild (CISA KEV), so patch ahead of items that are not. Senserva flags whether KB5046698 is missing on your devices.
CVEs fixed by this update
CVE-2024-38203CVE-2024-43447CVE-2024-43449CVE-2024-43450CVE-2024-43451CVE-2024-43452CVE-2024-43511CVE-2024-43516CVE-2024-43528CVE-2024-43530CVE-2024-43620CVE-2024-43621CVE-2024-43622CVE-2024-43623CVE-2024-43624CVE-2024-43625CVE-2024-43626CVE-2024-43627CVE-2024-43628CVE-2024-43629CVE-2024-43630CVE-2024-43631CVE-2024-43634CVE-2024-43635CVE-2024-43636CVE-2024-43637CVE-2024-43638CVE-2024-43639CVE-2024-43640CVE-2024-43641CVE-2024-43642CVE-2024-43643CVE-2024-43644CVE-2024-43646CVE-2024-49019CVE-2024-49039CVE-2024-49046
Affected products
- Windows 10 Version 21H2 for 32-bit Systems
- Windows Server 2022
- Windows Server 2022 (Server Core installation)
See this and every Microsoft update ranked by real-world risk on the Microsoft Patch Tracker.