QID 91971

Date Published: 2023-01-11

QID 91971: Microsoft Azure Stack Hub Security Updates for January 2023

Azure Stack Hub is an extension of Azure that provides a way to run apps in an on-premises environment and deliver Azure services in your datacenter.

A complete Qualys vulnerability scan report for Microsoft Azure Stack Hub can be obtained at Azure Stack Vulnerability Scan Report.

QID Detection Logic (Authenticated):
This QID checks for the file version of ntoskrnl.exe, if this file version is less than 10.0.17763.11208, it is considered as vulnerable.

Successful exploit could compromise Confidentiality, Integrity and Availability

  • CVSS V3 rated as Critical - 9.1 severity.
  • CVSS V2 rated as Medium - 4.6 severity.
  • Solution
    Customers are encouraged to connect with Microsoft for obtaining more information about patches and upcoming releases.

    Software Advisories
    Advisory ID Software Component Link
    Azure Stack Hub URL Logo learn.microsoft.com/en-us/azure-stack/operator/azure-stack-apply-updates?view=azs-2206