Microsoft Windows Security Updates September 2020 overview

Welcome to the Microsoft Windows Patch Day overview for September 2020. Microsoft released security updates and non-security updates for all supported client and server operating systems. Other company products have received security updates as well on this Patch Day.
The Windows updates that Microsoft releases on the second Tuesday of a month are cumulative in nature. Administrators may get them via Windows Update, WSUS, as direct downloads, or via other update management systems.
Our monthly overview provides you with details on the released patches. It includes an overview of all security patches that Microsoft released, an Excel spreadsheet with all the patches, an overview of the operating system distribution and severeness, direct download links, links to support pages, security advisories, known issues, and more.
Check out the August 2020 Patch Day in case you missed it.
Microsoft Windows Security Updates September 2020
You may download an Excel spreadsheet with detailed information about the September 2020 Patch Day. Click on the following link to download the archive to your system. All that is left to do is to extract the zip file and open it in a spreadsheet application such as Excel or LibreOffice Calc: windows-security-updates-september-2020
Executive Summary
- Microsoft released security updates for all supported client and server versions of Windows.
- Security updates were also released for other company products including Microsoft Edge (old and new), Internet Explorer, Visual Studio, Microsoft Office, Microsoft OneDrive, SQL Server, and Azure DevOps.
Operating System Distribution
- Windows 7Â Â (extended support only): 33 vulnerabilities: 4 critical and 48 important
- CVE-2020-0922 | Microsoft COM for Windows Remote Code Execution Vulnerability
- CVE-2020-1252 | Windows Remote Code Execution Vulnerability
- CVE-2020-1285 | GDI+ Remote Code Execution Vulnerability
- CVE-2020-1319 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability
- CVE-2020-1508 | Windows Media Audio Decoder Remote Code Execution Vulnerability
- CVE-2020-1593 | Windows Media Audio Decoder Remote Code Execution Vulnerability
- Windows 8.1: 41 vulnerabilities: 5 rated critical and 51 rated important
- same as Windows 7
- Windows 10 version 1803:Â 63 vulnerabilities: 9 critical and 54 important
- CVE-2020-0908 | Windows Text Service Module Remote Code Execution Vulnerability
- CVE-2020-0922 | Microsoft COM for Windows Remote Code Execution Vulnerability
- CVE-2020-0997 | Windows Camera Codec Pack Remote Code Execution Vulnerability
- CVE-2020-1129 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability
- CVE-2020-1252 | Windows Remote Code Execution Vulnerability
- CVE-2020-1285 | GDI+ Remote Code Execution Vulnerability
- CVE-2020-1319 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability
- CVE-2020-1508 | Windows Media Audio Decoder Remote Code Execution Vulnerability
- CVE-2020-1593 | Windows Media Audio Decoder Remote Code Execution Vulnerability
- Windows 10 version 1809: 70 vulnerabilities: 9 critical and 56 important
- same as Windows 10 version 1803
- Windows 10 version 1903: 70 vulnerabilities: 9 critical and 61 important
- same as Windows 10 version 1803
- Windows 10 version 1909:Â
- Â same as Windows 10 version 1803
- Windows 10 version 2004:
Windows Server products
- Windows Server 2008 R2 (extended support only):Â 39 vulnerabilities: 6 critical and 33 important
- CVE-2020-0922 | Microsoft COM for Windows Remote Code Execution Vulnerability
- CVE-2020-1252 | Windows Remote Code Execution Vulnerability
- CVE-2020-1285 | GDI+ Remote Code Execution Vulnerability
- CVE-2020-1319 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability
- CVE-2020-1508 | Windows Media Audio Decoder Remote Code Execution Vulnerability
- CVE-2020-1593 | Windows Media Audio Decoder Remote Code Execution Vulnerability
- Windows Server 2012 R2: 47 vulnerabilities: 6 critical and 41 important.
- same as Windows Server 2008 R2
- Windows Server 2016: 62 vulnerabilities: 9 critical and 56 important.
- same as Windows Server 2008 R2, plus
- CVE-2020-0908 | Windows Text Service Module Remote Code Execution Vulnerability
- CVE-2020-1129 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability
- CVE-2020-0997 | Windows Camera Codec Pack Remote Code Execution Vulnerability
- Windows Server 2019: 73 vulnerabilities: 9 critical and 64 are important
- same as Windows Server 2016.
Other Microsoft Products
- Internet Explorer 11: 3 vulnerability: 1 critical, 2 important
- CVE-2020-0878 | Microsoft Browser Memory Corruption Vulnerability
- Microsoft Edge:Â 4 vulnerabilities: 3 critical, 1 important
- CVE-2020-0878 | Microsoft Browser Memory Corruption Vulnerability
- CVE-2020-1057 | Scripting Engine Memory Corruption Vulnerability
- CVE-2020-1172 | Scripting Engine Memory Corruption Vulnerability
- Microsoft Edge on Chromium:
- see here (latest security patches from the Chromium project)
Windows Security Updates
Windows 7 SP1 and Windows Server 2008 R2
- Monthly Rollup: KB4577051Â
- Security-only Update: KB4577053
Fixes and improvements:
- Yukon, Canada time zone information update (monthly rollup).
- Fixes a security vulnerability issue with user proxies and HTTP-based Intranet servers. HTTP-based Intranet servers cannot leverage user proxies to detect updates by default anymore. Check this support page for additional information (monthly rollup).
- Security Updates
Windows 8.1 and Server 2012 R2
- Monthly Rollup: KB4577066Â
- Security-only Update: KB4577071Â
Fixes and improvements:
- Yukon, Canada time zone information update (monthly rollup).
- Fixes a security vulnerability issue with user proxies and HTTP-based Intranet servers. HTTP-based Intranet servers cannot leverage user proxies to detect updates by default anymore. Check this support page for additional information (monthly rollup).
- Fixed an unnamed issue when evaluating the compatibility status of the Windows system (monthly rollup).
- Security updates.
Windows 10 version 1803
- Support page: KB4577032
Fixes and improvements:
- Ability to sync Microsoft Edge IE Mode unidirectional session cookies when configured by an admin.
- Fixed an issue related to unexpected notifications.
- Updated Yukon, Canada time zone information.
- Fixed an Ever Viewer issue that prevented it from saving filtered events correctly.
- Fixed a delayed shutdown issue caused by Microsoft Keyboard Filter Service.
- Fixes a security vulnerability issue with user proxies and HTTP-based Intranet servers. HTTP-based Intranet servers cannot leverage user proxies to detect updates by default anymore. Check this support page for additional information (monthly rollup).
- Security Updates
Windows 10 version 1809
- Support page: KB4570333
Fixes and improvements:
- Fixes a security vulnerability issue with user proxies and HTTP-based Intranet servers. HTTP-based Intranet servers cannot leverage user proxies to detect updates by default anymore. Check this support page for additional information (monthly rollup).
- Security Updates
Windows 10 version 1903 and 1909
- Support page: KB4574727
Fixes and improvements:
- Fixes a security vulnerability issue with user proxies and HTTP-based Intranet servers. HTTP-based Intranet servers cannot leverage user proxies to detect updates by default anymore. Check this support page for additional information (monthly rollup).
- Security Updates
Windows 10 version 2004
- Support page: KB4571756Â
Fixes and improvements:
- Addressed a potential elevation of privilege issue in windowmanagement.dll.
- Fixes a security vulnerability issue with user proxies and HTTP-based Intranet servers. HTTP-based Intranet servers cannot leverage user proxies to detect updates by default anymore. Check this support page for additional information (monthly rollup).
- Security Updates
Other security updates
KB4577010 -- Cumulative security update for Internet Explorer: September 8, 2020
KB4577038 -- 2020-09 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012
KB4577048 -- 2020-09 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012
KB4577064 -- 2020-09 Security Monthly Quality Rollup for Windows Server 2008
KB4577070 -- 2020-09 Security Only Quality Update for Windows Server 2008
KB4577015 -- 2020-09 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607
KB4577021 -- 2020-09 Cumulative Update for Windows 10 Version 1703
KB4577041 -- 2020-09 Cumulative Update for Windows 10 Version 1709
KB4577049 -- 2020-09 Cumulative Update for Windows 10 Version 1507
Microsoft .NET Framework updates:
KB4576485 -- 2020-09 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012
KB4576486 -- 2020-09 Security and Quality Rollup for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2
KB4576487 -- 2020-09 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2
KB4576488 -- 2020-09 Security Only Update for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012
KB4576489 -- 2020-09 Security Only Update for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2
KB4576490 -- 2020-09 Security Only Update for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2
KB4576612 -- 2020-09 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008
KB4576613 -- 2020-09 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded 8 Standard and Windows Server 2012
KB4576614 -- 2020-09 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Windows Server 2012 R2
KB4576628 -- 2020-09 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2
KB4576629 -- 2020-09 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 8 Standard and Windows Server 2012
KB4576630 -- 2020-09 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2
KB4576631 -- 2020-09 Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008
KB4576478 -- 2020-09 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server, version 2004 and Windows 10 Version 2004
KB4576479 --2020-09 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 and Windows 10 Version 1607
KB4576480 -- 2020-09 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703
KB4576481 -- 2020-09 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1709
KB4576482 -- 2020-09 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1803 and Windows Server 2016 (1803)
KB4576483 -- 2020-09 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2019 and Windows 10 Version 1809
KB4576484 -- 2020-09 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server, version 1909, Windows 10 Version 1909, Windows Server 2019 (1903), and Windows 10 Version 1903
KB4576627 -- 2020-09 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809
Servicing Stack updates:
KB4577266 -- 2020-09 Servicing Stack Update for Windows Server, version 2004 and Windows 10 Version 2004
KB4570332 -- 2020-09 Servicing Stack Update for Windows Server 2019 and Windows 10 Version 1809
KB4576750 -- 2020-09 Servicing Stack Update for Windows Server 2016 and Windows 10 Version 1607
KB4576751 -- 2020-09 Servicing Stack Update for Windows Server 2019 (1903), and Windows 10 Version 1903
Known Issues
Windows 7 SP1 and Windows Server 2008 R2
- Updates may fail to install if the system is not supported by ESU.
- Certain operations may fail on cluster shared volumes. See workarounds on the support page.
Windows 8.1 and Server 2012 R2
- Certain operations may fail on cluster shared volumes. See workarounds on the support page.
Windows 10 version 1809
- Error "0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND."Â on systems with certain Asian language packs. Microsoft suggests to uninstall and reinstall the language packs, or to reset the PC.
- Microsoft Edge legacy error "0x80704006. Hmmmm…can’t reach this page" when trying to access sites on non-standard ports. Suggestions include using the new Edge or IE 11.
Windows 10 version 2004
- Users of the Microsoft Input Method Editor for Chinese and Japanese may experience various issues. Check this support page for additional details.
Security advisories and updates
Non-security related updates
KB4566371 -- 2020-09 Update for Windows 8.1, Windows Server 2012 R2, Windows Embedded 8 Standard, Windows Server 2012, Windows 7, Windows Server 2008 R2, and Windows Server 2008
KB4574726 -- 2020-09 Dynamic Update for Dynamic Update for Windows 10 Version 1903, and Windows 10 Version 1909
KB4578847 -- 2020-09 Update for Windows Server 2008 R2 for x64-based Systems
KB890830 -- Windows Malicious Software Removal Tool
KB4574728 -- 2020-09 Dynamic Update for Windows 10 Version 2004
Microsoft Office Updates
You find Office update information here.
How to download and install the September 2020 security updates
Security updates are released via Microsoft's Windows Update service and update management services such as WSUS. The main cumulative updates may also be downloaded from the company's Microsoft Update Catalog website.
It is recommended to back up the system before updates are installed as the installation of updates may cause numerous issues including boot issues, data loss or loss of functionality.
Windows administrators may run a manual update check at any time on home devices. Here are the instructions on how to do that:
- Select Start and select Settings.
- Select Update & Security in the Settings application.
- Click on the "check for updates" button to run a manual check for updates. Windows checks if important updates are available to download and install these on the device.
Direct update downloads
Below are resource pages with direct download links, if you prefer to download the updates to install them manually.
Windows 7 and Server 2008 R2
- KB4577051 -- 2020-09 Security Monthly Quality Rollup for Windows 7
- KB4577053 -- 2020-09 Security Only Quality Update for Windows 7
Windows 8.1 and Windows Server 2012 R2
- KB4577066 -- 2020-09 Security Monthly Quality Rollup for Windows 8.1
- KB4577071 -- 2020-09 Security Only Quality Update for Windows 8.1
Windows 10 (version 1803)
- KB4577032 -- 2020-09 Cumulative Update for Windows 10 Version 1803
Windows 10 (version 1809)
- KB4570333 -- 2020-09 Cumulative Update for Windows 10 Version 1809
Windows 10 (version 1903)
- KB4574727 -- 2020-09 Cumulative Update for Windows 10 Version 1903
Windows 10 (version 1909)
- KB4574727Â -- 2020-09 Cumulative Update for Windows 10 Version 1909
Windows 10 (version 2004)
- KB4571756 -- 2020-09 Cumulative Update for Windows 10 Version 2004
Additional resources
- September 2020 Security Updates release notes
- List of software updates for Microsoft products
- List of the latest Windows Updates and Services Packs
- Security Updates Guide
- Microsoft Update Catalog site
- Our in-depth Windows update guide
- How to install optional updates on Windows 10
- Windows 10 Update History
- Windows 8.1 Update History
- Windows 7 Update History


What mental age of reader are you targeting with the first sentence? 10?
Why not write an article on how to *avoid* upgrading from W10 to W11. Analogous to those like me who avoided upgrading from 7 to 10 for as long as possible.
If your paymaster Microsoft permits it, of course.
5. Rufus
6. Ventoy
PS. I hate reading these “SEO optimized” articles.
I used Rufus to create an installer for a 6th gen intel i5 that had MBR. It upgraded using Setup. No issues except for Win 11 always prompting me to replace my local account. Still using Win 10 Pro on all my other PCs to avoid the bullying.
bit pointless to upgrade for the sake of upgrading as you never know when you’ll get locked out because ms might suddenly not provide updates to unsupported systems.
ps…. time travelling?
written. Jan 15, 2023
Updated • Jan 13, 2023
This happens when you schedule a post in WordPress and update it before setting the publication date.
Anyone willing to downgrade to this awful OS must like inflicting themselves with harm.
I have become convinced now that anybody who has no qualms with using Windows 11/10 must fit into one of the following brackets:
1) Too young to remember a time before W10 and W11 (doesn’t know better)
2) Wants to play the latest games on their PC above anything else (or deeply needs some software which already dropped W7 support)
3) Doesn’t know too much about how computers work, worried that they’d be absolutely lost and in trouble without the “”latest security””
4) Microsoft apologist that tries to justify that the latest “features” and “changes” are actually a good thing, that improve Windows
5) Uses their computer to do a bare minimum of like 3 different things, browse web, check emails, etc, so really doesn’t fuss
Obviously that doesn’t cover everyone, there’s also the category that:
6) Actually liked W7 more than 10, and held out as long as possible before switching, begrudgingly uses 10 now
Have I missed any group off this list?
You have missed in this group just about any professional user that uses business software like CAD programs or ERP Programs which are 99% of all professional users from this list.
Linux doesn’t help anyone who is not a linux kid and apple is just a fancy facebook machine.
Microsoft has removed KB5029351 update
only from windows update though
KB5029351 is still available from the ms update catalog site
1. This update is labaled as PREVIEW if it causes issues to unintelligent people, then they shouldn’t have allowed Preview updates ot install.
2. I have installed it in a 11 years old computer, and no problems at all.
3. Making a big drama over a bluescreen for an updated labeled as preview is ridiculous.
This is probably another BS internet drama where people ran programs and scripts that modified the registry until they broke Windows, just for removing stuff that they weren’t even using just for the sake of it.
Maybe people should stop playing geeks and actually either use Windows 10 or Windows 11, but don’t try to modify things just for the sake of it.
Sometimes removing or stopping things (like defender is a perfect example) only need intelligence, not scripts or 3rd party programs that might mess with windows.
Windows 11 was a pointless release, it was just created because some of the Windows team wanted to boost sales with some sort of new and improved Windows 10. Instead, Microsoft cannot support one version well let alone two.
Windows 11 is the worst ugly shame by Microsoft ever. They should release with every new W11 version a complete free version of Starallback inside just to make this sh** OS functionally again.
motherboard maker MSI has recently released a statement regarding the “unsupported processor” blue screen error for their boards using Intel 600/700 series chipsets & to avoid the KB5029351 Win11 update:
https://www.msi.com/news/detail/MSI-On–UNSUPPORTED-PROCESSOR–Error-Message-of-Windows-11-Update-KB5029351-Preview-142215
check out the following recent articles:
Neowin – Microsoft puts little blame on its Windows update after UNSUPPORTED PROCESSOR BSOD bug:
https://www.neowin.net/news/microsoft-puts-little-blame-on-its-windows-update-after-unsupported-processor-bsod-bug/
BleepingComputer – Microsoft blames ‘unsupported processor’ blue screens on OEM vendors:
https://www.bleepingcomputer.com/news/microsoft/microsoft-blames-unsupported-processor-blue-screens-on-oem-vendors/
While there may be changes or updates to the Windows 10 Store for Business and Education in the future, it is premature to conclude that it will be discontinued based solely on rumors.
My advice, I left win 15 years ago. Now I’m a happy linux user (linuxmint) but there is Centos, Fedora, Ubuntu depending on your needs.
motherboard maker MSI has recently released new BIOS/firmware updates for their Intel 600 & 700 series motherboards to fix the “UNSUPPORTED_PROCESSOR” problem (Sept. 6):
https://www.msi.com/news/detail/Updated-BIOS-fixes-Error-Message–UNSUPPORTED-PROCESSOR–caused-BSOD-on-MSI-s-Intel-700-and-600-Series-Motherboards-142277
I try to disable the Diagnostics Tracking Service (Connected Devices Platform User Services) but it wont let me disable it, any help will be greatly appreciated.
Tank you for your help