Microsoft released its Wednesday night release version for Windows 10 version 1909. Overall update KB5004946 indicates security vulnerability CVE-2021-34527 On the Windows Print Spoiler service. After installing this and subsequent updates, non-admin users can only install signed printer drivers on the print server. By default, administrators can install both signed and unsigned printer drivers on the print server. Microsoft currently recommends installing this update on all print Windows client and server operating systems, starting with devices that currently play the role of print server. However, the update is only available for Windows 10 for Enterprise, Education and IoT Enterprise, as support for Windows 10 Home, Pro, Pro Education, Pro for Workstations and IoT Core was discontinued on May 11, 2021. The update brings Windows 10 version 1909 to OS Built 18363.1646, which can now be downloaded from the Windows Update or Microsoft Update list. More information about this update for Windows 10 can be found below or through Microsoft.
Download -> Download the KB5004946 update for Windows 10
You can download KB5004946 for Windows 10 directly from Microsoft:
The update includes the following improvements and bug fixes:
As documented in CVE-2021-34527, remote code activation on a Windows print spoiler service called “Print Nightmare” refers to exploitation. After installing this and later Windows updates, non-admin users can only install signature print drivers on the print server. By default, administrators can install both signed and unsigned printer drivers on the print server. Root certificates installed on the system’s trusted root certificate authorities trust the signed drivers. Microsoft recommends that you immediately install this update on all supported Windows client and server operating systems, starting with devices that currently offer print server role. You also have the option to configure the RestrictDriverInstallationToAd Administrators registry system to prevent non-administrators from installing signature printer drivers on the print server. For more information, see KB5005010.
More information about KB5004946 for Windows 10 can be found here Microsoft.
CVE-2021-34527 | Vulnerability in Windows Ax spooler remote code activation
Unplanned security updates for Windows can now be downloaded: