check before: 2025-05-22
Product:
Windows
Platform:
Online, World tenant
Status:
Change type:
Admin impact
Links:
Details:
IMPORTANT: This notice is only relevant for environments where:
.NET SDK version 8.0.3xx or 8.0.4xx is used
Scan Cab is used to check for update compliance
The May 2025 Scan Cab was deployed before 10:00 AM PT on May 22, 2025.
An updated version of the May 2025 Scan Cab was made available at 10:00 AM PT on May 22, 2025. This Scan Cab includes new metadata corresponding to new updates for the following .NET versions:
.NET 8.0.3xx (KB5059200)
.NET 8.0.4xx (KB5059200)
The new Microsoft update for these .NET versions released May 22, 2025 at 10:00 AM PT included additional protections to address CVE-2025-26646. An authorized attacker with standard user privileges could place a malicious file and then wait for the privileged victim to run the calling command. See the additional information section of this message for details.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2025-05-23
updated:
2025-05-23
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
A new version of the Scan Cab tool for .NET SDK environments has been released to address a security vulnerability, and IT teams should update it to ensure systems remain secure and compliant.
Direct effects for Operations**
Deployment of outdated Scan Cab
If the outdated Scan Cab is deployed, it may not include the necessary protections against CVE-2025-26646, leaving systems vulnerable to attacks that exploit this spoofing vulnerability.
- roles: IT Administrators, Security Analysts
- references: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26646, https://support.microsoft.com/topic/-net-8-0-update-may-13-2025-kb5059200-8ace2b08-2644-454e-a43f-157c60835e49
User experience degradation
Failure to update the Scan Cab may lead to compliance issues and potential downtime for users due to security incidents, negatively impacting productivity and user trust in IT systems.
- roles: End Users, IT Support Staff
- references: https://techcommunity.microsoft.com/t5/windows-it-pro-blog/announcing-a-smaller-wsus-scan-cab/ba-p/2928256?msclkid=256145ccd0c011ec9266b53af8d0aca1, https://learn.microsoft.com/windows-server/administration/windows-server-update-services/manage/wsus-and-the-catalog-site
Configutation Options**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 2 months ago
