Microsoft fixes critical SMBv3 vulnerability with new patches for Windows 10 versions 1903 and 1909

Laurent Giret

Windows 10

Microsoft has just released new patches for Windows 10 versions 1903 and 1909 that include a fix for the critical vulnerability in the Microsoft Server Message Block 3.1.1 (SMBv3). Microsoft acknowledged the security flaw in the SMBv3 protocol two days ago, explaining that it only affected the latest versions of Windows 10 and Windows Server.

For those unfamiliar, SMBv3 is network file sharing protocol that allows applications on a computer to read and write to files and to request services from servers. The vulnerability that Microsoft discovered could allow attackers to execute code remotely on an SMB Server or Client, though Microsoft said two days ago that it had yet to be exploited.

If you’re running Windows 10 version 1903 (or the May 2019 Update), you can install now the build 18362.720 that includes this security fix for the SMBv3 protocol. The build 18363.720 brings the exact same fix for users running Windows 10 version 1909 (or the November 2019 Update). As these two patches are cumulative updates, you’ll also get all fixes included in this month’s Patch Tuesday updates, in case you didn’t install them already.