Microsoft has released an out-of-band update, KB5091575, for Windows Server 2022, addressing critical LSASS startup crashes in environments using Privileged Access Management. This update includes a servicing stack refresh to facilitate future updates and enhance error reporting for enterprise admins managing WSUS. The patch is crucial for preventing repeated restart loops and authentication issues in multi-domain forests, particularly during maintenance windows. While the update temporarily disables detailed sync error reporting to mitigate a remote code execution vulnerability, administrators can still access error codes through server logs or PowerShell cmdlets

Windows Server 2022 KB5091575 (OS Build 20348.5024) Out-of-band released

Microsoft released KB5091575 as an out-of-band update for Windows Server 2022 that directly addresses LSASS startup crashes in multi-domain forests using Privileged Access Management. The patch bundles a servicing stack refresh to streamline future updates and prevent redundant installations on already patched systems. Enterprise admins managing WSUS will notice simplified sync error reporting, which temporarily hides detailed logs to close a remote code execution vulnerability. IT teams should deploy this update during maintenance windows and verify directory service stability before resuming normal operations.

Windows Server 2022 KB5091575 (OS Build 20348.5024) Out-of-band released @ NT Compatible