check before: 2026-04-21
Product:
SharePoint, Windows
Platform:
Online, World tenant
Status:
Change type:
Admin impact
Links:
Details:
IMPORTANT: This notice is only relevant for environments where:
ASP.NET Core is used
Scan Cab is used to check for update compliance
The April 2026 Scan Cab was deployed before 10:00 PM PT on April 21, 2026
An updated version of the April 2026 Scan Cab was made available at 10:00 PM PT on April 21, 2026. This Scan Cab includes new metadata corresponding to updates for ASP.NET Core.
The Microsoft update for ASP.NET Core released on April 21, 2026, includes additional protections to address CVE-2026-40372: ASP.NET Core Elevation of Privilege Vulnerability. See the Additional information section of this message for details.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2026-04-22
updated:
2026-04-22
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Increased Security Vulnerability
If the updated Scan Cab is not deployed, systems using ASP.NET Core may remain vulnerable to CVE-2026-40372, leading to potential exploitation.
- roles: IT Administrators, Security Analysts
- references: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40372
Compliance Issues
Failure to update the Scan Cab may result in non-compliance with security policies, affecting audit results and organizational reputation.
- roles: Compliance Officers, IT Administrators
- references: https://techcommunity.microsoft.com/t5/windows-it-pro-blog/announcing-a-smaller-wsus-scan-cab/ba-p/2928256?msclkid=256145ccd0c011ec9266b53af8d0aca1
User Experience Degradation
Users may experience application failures or performance issues if the necessary updates for ASP.NET Core are not applied, leading to frustration and decreased productivity.
- roles: End Users, Application Support Specialists
- references: https://learn.microsoft.com/windows/win32/wua_sdk/using-wua-to-scan-for-updates-offline?tabs=vbscript
Increased IT Support Load
Without the updated Scan Cab, IT support may face an increased number of incident reports related to application failures or security breaches, straining resources.
- roles: Help Desk Technicians, IT Support Managers
- references: https://learn.microsoft.com/windows-server/administration/windows-server-update-services/manage/wsus-and-the-catalog-site
Operational Downtime
If vulnerabilities are exploited due to the outdated Scan Cab, it may lead to operational downtime while issues are resolved, impacting business continuity.
- roles: System Administrators, Business Continuity Managers
- references: https://go.microsoft.com/fwlink/?LinkID=74689
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
XXXXXXX ... free basic plan only
Potentional Risks**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 2 months ago ago
