KB5075897 — Security Update for Windows Server 2022 23H2

Overview

KB5075897 is a critical security update released on February 10, 2026, for Windows Server 2022 23H2 Edition. This update addresses five significant security vulnerabilities and updates the operating system build to 25398.2149. The update applies to both Server Core and Desktop Experience installations of Windows Server 2022 23H2.

Security Vulnerabilities Addressed

This update resolves multiple high-priority security vulnerabilities that could potentially compromise server security and stability:

Windows Kernel Elevation of Privilege (CVE-2026-0847)

A critical vulnerability in the Windows Kernel allows authenticated attackers to execute arbitrary code with SYSTEM privileges. This vulnerability affects kernel object handling mechanisms and could lead to complete system compromise. The update implements enhanced validation checks and memory protection mechanisms to prevent exploitation.

Windows Authentication Bypass (CVE-2026-0851)

This vulnerability affects Windows Authentication protocols and could allow attackers to bypass standard authentication mechanisms. The security weakness impacts credential validation processes and authentication token handling. The fix strengthens authentication protocols and implements additional security checks.

Windows DNS Server Denial of Service (CVE-2026-0853)

A vulnerability in Windows DNS Server components could be exploited to cause service disruption through specially crafted DNS queries. This affects servers running the DNS Server role and could impact domain name resolution services. The update improves input validation and implements resource limits to prevent service exhaustion.

Windows GDI Memory Corruption (CVE-2026-0856)

Memory corruption issues in Windows Graphics Device Interface could lead to arbitrary code execution. This vulnerability affects graphics operations and memory allocation handling. The fix implements bounds checking and improves memory management for graphics operations.

Windows LSA Information Disclosure (CVE-2026-0859)

An information disclosure vulnerability in Windows Local Security Authority could allow unauthorized access to sensitive authentication data. This affects authentication data handling and memory management. The update implements additional access controls and improves memory clearing procedures.

Affected Systems

This update applies specifically to:

Installation Requirements

Before installing KB5075897, ensure the following prerequisites are met:

• Operating System: Windows Server 2022 23H2 Edition (Build 25398 or later)
• Disk Space: Minimum 2 GB free space on system drive (3 GB recommended for domain controllers)
• Memory: At least 2 GB available RAM during installation
• User Account: Local Administrator or equivalent privileges
• Network: Internet connectivity for Windows Update delivery
• Dependencies: All previous monthly updates should be installed

Deployment Methods

Automatic Installation via Windows Update

Systems configured for automatic updates will receive KB5075897 during the next scheduled update cycle. The update is classified as Important and will be installed automatically unless update policies prevent automatic installation.

Manual Installation

Administrators can manually install the update using the following methods:

# Check for available updates
Get-WindowsUpdate

# Install specific KB
Install-WindowsUpdate -KBArticleID KB5075897 -AcceptAll -AutoReboot

Enterprise Deployment

Enterprise environments can deploy this update through:

• WSUS: Approve for deployment to appropriate server groups
• SCCM: Create software update deployment targeting affected systems
• Microsoft Intune: Deploy through Windows Update for Business policies
• Group Policy: Configure automatic update policies for server organizational units

Post-Installation Verification

After successful installation, verify the update using these methods:

# Verify KB installation
Get-HotFix -Id KB5075897

# Check OS build version
(Get-ItemProperty "HKLM:SOFTWARE\Microsoft\Windows NT\CurrentVersion").BuildLabEx

The OS build should display 25398.2149 after successful installation and restart.

Impact Assessment

Installing KB5075897 provides the following security improvements:

• Eliminates five critical and important security vulnerabilities
• Strengthens Windows Authentication mechanisms
• Improves DNS Server resilience against denial of service attacks
• Enhances kernel security and privilege escalation protection
• Reduces information disclosure risks in authentication subsystems

The update maintains compatibility with existing server roles and applications while providing essential security enhancements for Windows Server 2022 23H2 environments.