Patch tracker / KB5070884
KB5070884
Microsoft security update released 2025-10-14. Fixes 1 CVE.
CriticalCISA KEV
Download KB5070884
Get the official update for KB5070884. The download and file size for each supported product are on the Microsoft Update Catalog page.
Update summary
Released
2025-10-14
CVEs fixed
1
Max CVSS
9.8
Severity
Critical
Exploitation and severity
Fixes 1 CVE. At least one is actively exploited (CISA KEV). Most severe CVSS 9.8 (Critical). EPSS exploit probability up to 100%.
Among the top 5% of tracked Microsoft updates by EPSS exploit probability.
What to do
Treat as urgent: it is being exploited in the wild (CISA KEV), so patch ahead of items that are not. Senserva flags whether KB5070884 is missing on your devices.
CVEs fixed by this update
Affected products
- Windows Server 2019
- Windows Server 2019 (Server Core installation)
- Windows Server 2022
See this and every Microsoft update ranked by real-world risk on the Microsoft Patch Tracker.