Full Report
Microsoft has released emergency Windows Server updates to address a known issue preventing Windows containers from launching. [...]
Analysis Summary
# Vulnerability: Windows Server Container Launch Issue Requiring Emergency Update
## CVE Details
- CVE ID: Information Not Available from summary (Described as a specific container launch issue requiring emergency updates)
- CVSS Score: Information Not Available
- CWE: Information Not Available
## Affected Systems
- Products: Windows Server
- Versions: Windows Server 2025, Windows Server 2022, Windows Server 2019
- Configurations: Systems attempting to launch containers.
## Vulnerability Description
The issue is described as a container launch problem where containers fail to correctly access necessary system files from the Windows Server host, impacting compatibility and reliability across different Windows versions.
## Exploitation
- Status: Unknown (Implied to be a reliability/compatibility issue being urgently patched, not explicitly stated as exploited)
- Complexity: Information Not Available
- Attack Vector: Information Not Available
## Impact
- Confidentiality: Information Not Available
- Integrity: Information Not Available (Impacts system operation/reliability)
- Availability: High (Impacts the ability to launch and operate containers reliably)
## Remediation
### Patches
These are Out-of-Band (OOB) emergency updates and must be installed manually:
- **Windows Server 2025:** KB5059087
- **Windows Server 2022 (Version 1):** KB5059092
- **Windows Server 2022 (Version 2):** KB5059091
### Workarounds
The updates are **not** delivered via Windows Update and will not install automatically. They must be installed manually by downloading standalone MSU packages from the Microsoft Update Catalog. Microsoft provides guidance on using the **DISM.exe** tool to apply these updates to running systems or installation media.
## Detection
- **Indicators of Compromise:** Failure of containers to launch or function correctly due to missing host system file access.
- **Detection methods and tools:** Monitoring container startup processes for specific failures related to host file access.
## References
- Vendor Advisory (General Context): bleepingcomputer.com/news/microsoft/new-windows-server-emergency-updates-fix-container-launch-issue/
- KB5059087 Guidance: support.microsoft.com/help/5059087
- Update Catalog: catalog.update.microsoft.com/