KB4598242 comes with several fixes and improvements for Windows 10 v20H2 & v2004. Here the links to download KB4598242 offline installer.
After a long wait time, Microsoft finally released the new cumulative update KB4598242 for both Windows 10 v20H2 and v2004 users. This new update includes some fixes and improvements. However, the main focus of the update is to fix some security issues. Mainly, Microsoft fixed a vulnerability in HTTPS-based intranet servers. In addition to that, the update also fixes security bypass vulnerability in Printer Remote Procedure Call (RPC) binding and provides general security improvements for various Windows components like Windows media, Windows app framework, Hybrid storage systems, virtualization, etc.
All in all, the update is pretty eventful and we would recommend you install the update as soon as possible to fix the security issues.
As always, Windows 10 can auto-download the KB4598242 update from the Settings app. If needed, you can manually trigger the update too. To do that, open the Settings app, go to “Update & Security → Windows Update” and click on the “Check for updates” button. This action should force Windows to install the KB4598242 update if it is available for your system.
To install the update on an offline machine, use the KB4598242 direct download links below. Once downloaded, you can install it like any other software.
Download KB4598242 Offline Installer
To make things easier for you, I found the direct download links for KB4598242 for both Windows 10 32-bit and 64-bit systems. Depending on your system type, download the update using the below links and install it like any other Windows software. After installing, restart the system and you are good to go.
For v20H2:
KB4598242 x86 (32-bit) offline installer (download size: 131.4 MB)
KB4598242 x64 (64-bit) offline installer (download size: 401.3 MB)
For v2004:
KB4598242 x86 (32-bit) offline installer (download size: 131.4 MB)
KB4598242 x64 (64-bit) offline installer (download size: 401.3 MB)
If you want KB4598242 download links for Windows Server, ARM64 based systems, or some other version then go to the Microsoft update catalog website to find the appropriate links. All you have to do is click on the Download button next to the appropriate version.
KB4598242 Changelog
- Addresses a security vulnerability issue with HTTPS-based intranet servers. After installing this update, HTTPS-based intranet servers cannot, by default, use a user proxy to detect updates. Scans using these servers will fail if you have not configured a system proxy on the clients. If you must use a user proxy, you must configure the behavior using the policy “Allow user proxy to be used as a fallback if detection using system proxy fails.” To ensure the highest levels of security, also use Windows Server Update Services (WSUS) Transport Layer Security (TLS) certificate pinning on all devices. This change does not affect customers who are using HTTP WSUS servers. For more information, see Changes to scans, improved security for Windows devices.
- Addresses a security bypass vulnerability that exists in the way the Printer Remote Procedure Call (RPC) binding handles authentication for the remote Winspool interface. For more information, see KB4599464.
- Security updates to Windows App Platform and Frameworks, Windows Media, Windows Fundamentals, Windows Kernel, Windows Cryptography, Windows Virtualization, Windows Peripherals, and Windows Hybrid Storage Services.
That is it.
