We help you save time, money and improve your IT security

Integrate Third-Party Patch Management in Microsoft ConfigMgr and Intune

Patch Tuesday Support Group March Webinar

Webinar Summary

Jordan Benzing goes over the latest update releases and which ones are keeping him awake at night. Then Bryan Dam spends far too long discussing the news of the month for March.

Watch the Webinar Recording

Webinar Hosts

Bryan Dam

Bryan Dam

Patch My PC
Software Engineer

Bryan Dam

Jordan Benzing

Patch My PC
Security Engineer Lead

Patch Tuesday Support Group Webinar Recap

Patch Tuesday March News

March 2024 security update might fail to download — Win 10 LTSC 2019 and Server 2019 pointed at WU. In theory, resolved the very next day. Microsoft 365 admin center

March 2024 Exchange Server Security Updates — Breaks OWA downloads and Outlook Search. Released: March 2024 Exchange Server Security Updates – Microsoft Community Hub

The February 2024 security update might fail to install — Hidden C:\$WinREAgent folder; you can delete it manually. Fixed in March Releases. Microsoft 365 admin center

KB5034441: WinRE Updates – Abandon Hope for a Fix from Microsoft — The product team has privately confirmed that they will not be re-releasing this with a magical fix for lack of space issues. My Dinner with KB5034441: Gracefully Expanding Recovery Partitions with Intune (computerystuff.com)

GitHub Widespread Malicious ForksGitHub is under automated attack by millions of cloned repositories filled with malicious code | PC Gamer

Driver Automation Tool 7.2.3 Released — Note: VirusTotal results are believed to be false positives. GitHub – maurice-daly/DriverAutomationTool: Home of the Driver Automation Tool

MiTM Attack on Teslas — MiTM phishing attack can let attackers unlock and steal a Tesla (bleepingcomputer.com)

Researchers expose Microsoft SCCM misconfigs usable in cyberattacks — Researchers expose Microsoft SCCM misconfigs usable in cyberattacks (bleepingcomputer.com)

Powershell Graph API Samples – App ID Deprecated — GitHub – microsoftgraph/powershell-intune-samples: This repository of PowerShell sample scripts show how to access Intune service resources. They demonstrate this by making HTTPS RESTful API requests to the Microsoft Graph API from PowerShell.

Windows Subsystem for Android is Deprecated – March 5, 2025 — Windows Subsystem for Android™️ | Microsoft Learn

ConfigMgr Windows Update Compliance Reporting FAQ — Windows Update Compliance Reporting FAQ (microsoft.com)

What’s New in Intune — Windows Hello enrollment RBAC improvement and enhanced sign-in security configuration, Microsoft Cloud PKI service is now in General Availability, and Recommended .Net Framework bumped to 4.7.2 for IME. What’s new in Microsoft Intune | Microsoft Learn

What’s new in Windows Autopatch, February 2024 — Import existing update rings, define your own release cadence instead of the default 21 days, and data refresh reduced to 30 minutes instead of 24 hours. What’s new in Windows Autopatch: February 2024 | Windows IT Pro blog (microsoft.com)

Patch My PC Releases Custom Apps Custom Apps | Getting Started (patchmypc.com)  |  Custom Apps Webinar – Feb 28th 2024 – Patch My PC

Microsoft Patches of Note

View the full list of Patch Tuesday release notes at Patch Tuesday Blog Home Page – Patch Tuesday Blog

Patches Released: 61
Critical Severity: 36
Important Severity: 21
N/A Severity: 4

Third Party Updates from Patch My PC

Total Number of Updates: 2358
Critical: 49
Important: 360
Moderate: 1878
Low: 8

Browser Patch Specifics
Chrome: 21 Patches
FireFox: 180 Patches
Microsoft Edge: 21 Patches
Opera: 10 Patches

Insight into CVEs

Unique CVEs this Month: 64
Critical: 2

Important:
58

CVE breakdown
6 Denial of Service
24 Elevation of Privilege
6 Information Disclosure
18 Remote Code Executions
3 Security Feature Bypass
2 Spoofing
1 Tampering

Open Management Infrastructure (OMI) Remote Code Execution Vulnerability — CVE-2024-21334  Score 8.5 Remote code execution, exploitation less likely. An attacker can remotely access an OMI instance over the Internet and send specific requests to trigger a use-after-free vulnerability. Customers running SCOM (System Center Operations Manager) 2019 or SCOM 2022 should update to OMI version 1.8.1-0. If unable to update and Linux machine does not require network listening, disabling the OMI ports will mitigate this vulnerability.

Windows KB5035849 update failing to install —  Critical Window’s Patch Tuesday updates for March failed to install on Windows Server 2019 or Windows 10 Enterprise LTSC 2019 systems, sending admins 0xd0000034 errors. If experiencing this issue, administrators can revert to manual download from the Microsoft Update Catalog. This method requires the installation of the KB5005112 August 2021 servicing stack update (SSU) for your operating system, then manually deploying the KB5035849 update.