Windows 11 KB5027223 KB5027231 June Patches

Microsoft has released the patches for June 2023. They released Windows 11 KB5027223 and KB5027231 LCUs to fix known issues, security vulnerabilities, and performance issues. Windows 10 KB5027215 June patch also released.

The latest Windows 11 KB5027223 and KB5027231 updates address security issues for your Windows operating system, a known problem, and security updates address an issue that affects the Windows Kernel. This issue is related to CVE-2023-32019.

This update addresses a compatibility issue. The issue occurs because of unsupported use of the registry. The latest Windows 11 KB5027223 and KB5027231 security updates address and include improvements.

This Windows 11 May patch added a feature that helps to configure distinct types of access and apps (Multi-app kiosks) to run for different users on one device with the latest updates of Windows 22H2. Multi-app kiosk mode is ideal for multiple people using the same device. More details are in the below section.

Bluetooth Low Energy (LE) Audio Support is available with this Windows 11 June patch update. This update improves audio fidelity and battery life when you pair your computer with Bluetooth LE Audio earbuds and headphones.

Zero Day Security Vulnerability for June 2023

There are no zero day vulnerabilities announced by Microsoft with the June patch Tuesday. Microsoft released 44 CVEs as per the MSRC CVE report, but there is no zero day vulnerability that needs to be fixed as the highest priority.

CVE	CVE Title	Publicly Disclosed	Exploitability Assessment	Exploited	Mitigations	Impact	Max Severity
CVE-2023-32031	Microsoft Exchange Server Remote Code Execution Vulnerability	No	Exploitation More Likely	No		Remote Code Execution	Important
CVE-2023-32031	Microsoft Exchange Server Remote Code Execution Vulnerability	No	Exploitation More Likely	No		Remote Code Execution	Important
CVE-2023-32029	Microsoft Excel Remote Code Execution Vulnerability	No	Exploitation Less Likely	No		Remote Code Execution	Important
CVE-2023-32029	Microsoft Excel Remote Code Execution Vulnerability	No	Exploitation Less Likely	No		Remote Code Execution	Important
CVE-2023-32024	Microsoft Power Apps Spoofing Vulnerability	No	Exploitation Less Likely	No		Spoofing	Important
CVE-2023-32024	Microsoft Power Apps Spoofing Vulnerability	No	Exploitation Less Likely	No		Spoofing	Important
CVE-2023-29353	Sysinternals Process Monitor for Windows Denial of Service Vulnerability	No	Exploitation Less Likely	No		Denial of Service	Low

Video Review of June 2023 Patch Tuesday Windows 11 KB5027223 KB5027231

Let’s have a quick Video Review of June 2023 Patch Tuesday Windows 10 KB5027215. June Patch Tuesday Windows 11 June patches KB5027223 and KB5027231 are also covered in this video.

How to Seek Windows Updates?

Windows 11 allows you to choose when and how to receive the latest updates to ensure your device runs efficiently and securely. To manage your update preferences and view available updates, select “Check for Windows updates.”

• Alternatively, you can seek the latest Windows update by selecting Start > Settings > Windows Update by accessing the update settings.

Microsoft releases security updates on “Patch Tuesday,” the second Tuesday of each month at 10:00 AM PST. IT professionals should plan their deployment schedules according to their time zone(s).

Windows 11 New Features Released with Configuration Updates

The following updates are released as part of the Controlled Feature Rollout (moment). You need to enable the New toggle control “Get Windows updates as soon as they’re available for your device” on the Settings > Windows Update page to be part of the new features rollout by Microsoft.

This applies only to Windows 11 22H2 all editions if you have NOT temporarily blocked the option mentioned above using the Allow Temporary Enterprise Feature Control option. From the above video, you can learn how to control New Monthly Features Enablement via monthly LCU using Intune WUfB Policy.

• The following table gives a quick overview of New Features introduced with the June Patch Tuesday updates using the Controlled Feature Rollout (moment) feature.

New Features	Details
Additional Language Support for Live Captions	Chinese, French, German, Italian, Japanese, Portuguese, Spanish, Danish, English (Ireland, etc) and Korean
Redesigns the in-app voice command and Additional for English Dialects such English (India), English (UK), etc…	You can access the command help page on the voice access bar from Help > View all commands or use the voice access command “what can I say?”
New Voice Commands added for Text Selection	New VPN status icon, a small shield on top of the active network icon, to the system tray. The VPN icon will be overlayed in your system’s accent color over the active network connection.
New VPN Status icon	Settings > Personalization > Taskbar. You can also right-click the taskbar to get to taskbar settings quickly.
Additional Clock on the System Tray	Prnt Screen (PRT SCR) key behavior change
Delete all the text in a text box – you have to say “Delete all” To Bold, Underline, or Italics – You can say the voice command – “Bold that,” “Underline that,” or “Italicize that”	These are in notification toasts you get from apps installed on your PC or from phones linked to your PC. Note that this feature only works for English.
Multi-app kiosk mode	You can configure distinct types of access and apps to run for different users on one device. Multi-app kiosk mode is ideal for scenarios in which multiple people use the same device.
Prnt Screen (PRT SCR) key behaviour change	Pressing the print screen key opens the Snipping Tool by default.
Improvements in Computer performance for gaming scenario	Your computer’s performance when you use a mouse that has a high report rate for gaming.

Windows 11 New Improvements with June Patches

HTMD community covered all the new features or improvements of the Windows 11 22H2 release in the following blog post. All these features are included in the latest Cumulative Update released on the patch Tuesday, 13th June 2023. Here are the improvements for Windows 11, version 22H2.

New Improvements	Details
Displays the total OneDrive storage on the Accounts page in the Settings app	Provides Full amount of storage capacity for all your Microsoft OneDrive subscriptions.
Bluetooth Low Energy (LE) Audio Support with Windows 11	This update improves audio fidelity and battery life when you pair your computer with Bluetooth LE Audio earbuds and headphones.
User Experience improvements with the Search box	June Patch update improves the user experience (UX) and interactions for the search box on the taskbar.
Windows Telephone Activation Numbers updated	June update changes the support phone number for Microsoft India for Windows activation.

Issues Fixed with Windows 11 June Patches

Let’s look at the issues fixed with Windows 11 June patch Tuesday KBs (KB5027223 and KB5027231). The following table covers both Windows 11 22H2 and 21H2 fixes.

Fixes with Windows 11 June Patches	Details
The AVD searchindexer.exe issue is fixed	The AVD searchindexer.exe issue is fixed
You cannot access the SMB shared folder issue is fixed	The errors are “Not enough memory resources” or “Insufficient system resources.”
The unexpected password expiration notices to users issues are fixed with June patch updates	This occurs when you set up an account to use “Smart Card is Required for Interactive Logon” and set “Enable rolling of expiring NTLM secrets.”
Local Security Authority Subsystem Service (LSASS) issue is fixed now	The Local Security Authority Subsystem Service (LSASS) stops working when you use Azure Virtual Desktop (AVD).
MDM_VPNv2_01 class related issue is fixed	Enumerating this class fails. The error message is “Generic Error.”
The firewall issue affects devices that are joined to Azure Active Directory (Azure AD) issue is fixed	The Windows Firewall cannot apply the correct domain and profile for them.
The issue that affects Windows Defender Application Control (WDAC) is fixed with June Patches for Windows 11	This creates audit events that you do not need. This occurs when you choose the Disabled: Script Enforcement option.
Runas command issue is fixed with June updates	Runas stops working, and the device behaves as if you did not sign in to your account.
Windows 11 Modern Standby Issue is fixed with June’s Latest Cumulative Update patch	The error is 0x13A KERNEL_MODE_HEAP_CORRUPTION.
Windows Firewall Issue is fixed with June updates.	The firewall drops all connections to the IP address of a captive portal. This occurs when you choose the Captive Portal Addresses option.
Windows 11 Memory Leak issue is fixed	Memory Leak occurs every time you print a rich text document.

Known Issues from Windows 11 KB5027223 and KB5027231

Let’s look at the issues fixed with Windows 11 June patch Tuesday KBs (KB5027223 and KB5027231). The following table covers both Windows 11 22H2 and 21H2 fixes.

Summary	Originating update	Status	Last updated
The integrated camera might not work as expected on some Arm-based devices	NA	Workaround provided	25th May
Saving or copying files might intermittently fail	OS Build 22000.1761 KB5023774 2023-03-28	Workaround provided	24th May

SCCM Windows 11 KB5027223 KB5027231 Deployment

Learn how to Deploy Windows 11 KB5027223 KB5027231 June 2023 Cumulative Updates using SCCM/WSUS. You can deploy Windows 11 June 2023 CU KBs using SCCM.

Using the following methods, you can create a monthly patch package for June 2023. You can also search with Windows 11 LCU for June 2023 KB5027223 KB5027231. The easiest way is to check from the SCCM admin console.

NOTE! You can verify the Windows 11 (OS Builds 22000.2057, 22621.1848) by installing June 2023 Latest Cumulative Updates.

• In SCCM Console, Navigate to Software Library\Overview\Software Updates\All Software Updates.
• You must initiate a WSUS Sync from the All Software Updates node (Right-click on the node and initiate the sync).
• Search with the following KB5027223 KB5027231 Number.
• Or you can search with 23-06 Cumulative Update for Windows 11, as shown in the below screenshot.

Name of Windows 11 patches for May 2023	Release Date
2023-06 Cumulative Update for Windows 11 Version 22H2 for ARM64-based Systems (KB5027231 )	6/13/2023 5:00:00 PM
2023-06 Cumulative Update for Windows 11 Version 22H2 for x64-based Systems (KB5027231)	6/13/2023 5:00:00 PM
2023-06 Cumulative Update for Windows 11 for ARM64-based Systems (KB5027223)	6/13/2023 5:00:00 PM
2023-06 Cumulative Update for Windows 11 for x64-based Systems (KB5027223)	6/13/2023 5:00:00 PM

• How to Create Deploy New Software Update Patch Package Using SCCM | ConfigMgr
• SCCM ADR Automatic Deployment Rule Creation Process

Intune Windows 11 KB5027223 KB5027231 Deployment

Let’s check how to deploy the June 2023 Patch Tuesday (LCU) Deployment using Intune. You can deploy Windows 11 June CU using Microsoft Intune. The patch deployment process in Microsoft Intune is different from that of SCCM.

I don’t think creating a new patch deployment policy to cater to monthly CU deployments is mandatory, but you can use the following method to expedite. The existing patch deployment policy will deliver the patches using WUfB (Windows Update for Business).

You have the option to expedite the Installation of June 2023 quality updates. Create expedited update profiles for Quality updates using the following steps.

The following are the Settings for Intune quality update profile for the monthly patching process if you want to expedite the deployment of patches. Otherwise, you can use the standard quality updates policy from Intune.

• Name – Windows 11 June 2023 LCU.
• Description – Recommend adding a detailed description.
• Expedite installation of quality updates if the device OS version is less than 13th June 2023 – 2023.06 B Security Updates for Windows 10 and later
• Number of days to wait before the restart is enforced – 1 Day

More Details on Zero Day Out Of Band Patch Deployment Using Intune MEM Expedite Best Option and Intune Reporting Issue: Expedite Windows Security Patch Deployment.

Automated Patch Management with Windows Autopatch

Autopatch helps streamline updating operations and create new opportunities for IT pros. The Windows Autopatch Release Management provides you with more clarity on the Quality, Feature updates, and install schedules in Intune portal, Here, you can get more information Windows Autopatch Implementation Setup Guide.

In Intune Portal, Navigate to Devices, Under Windows Autopatch. Select Release Management, which displays the updates and releases scheduled.

Windows 11 KB5027223 KB5027231 Direct Download Links

Let’s manually download the 2023 May Cumulative Update for Windows 11 KB5027223 KB5027231 from the Microsoft Update Catalog website. The following tables provide the direct links to download the June 2023 Cumulative Updates for Windows 11.

You can check the Microsoft Update Catalog portal to get the Windows 11 LCUs direct download links for June 2023 LCU. Check out Microsoft Update Catalog, https://www.catalog.update.microsoft.com/

Search for updates from the Windows Update Catalog – To download the latest cumulative update (LCU) for your operating system that you want to apply manually. Put the KB article number and click the Search icon, Search Keyword 2023-06.

Title	Products	Size	Direct Download
2023-06 Cumulative Update for Windows 11 for x64-based Systems (KB5027223)	Windows 11 22H2	338.6 MB	Download
2023-06 Cumulative Update for Windows 11 Version 22H2 for x64-based Systems (KB5027231)	Windows 11 21H2	288.6 MB	Download

Author

About Author – Jitesh, Microsoft MVP, has over six years of working experience in the IT Industry. He writes and shares his experiences related to Microsoft device management technologies and IT Infrastructure management. His primary focus is Windows 10/11 Deployment solution with Configuration Manager, Microsoft Deployment Toolkit (MDT), and Microsoft Intune.