Microsoft October 2025 Updates Disable USB Input in Windows Recovery Environment
Summary
Hide ▲
Show ▼
Microsoft's October 2025 security updates (KB5066835) initially disabled USB mice and keyboards in the Windows Recovery Environment (WinRE), affecting both client (Windows 11 24H2 and 25H2) and server (Windows Server 2025) platforms. This issue made WinRE unusable for troubleshooting or repairing the OS, prompting users to switch to Bluetooth or PS/2 input devices as a workaround. Microsoft has since released an emergency update (KB5070773) to resolve the issue, which started rolling out on October 21, 2025. This update restores USB functionality in WinRE, allowing users to navigate recovery options. Affected customers can also use touchscreen, PS/2 devices, or USB recovery drives as workarounds. OEMs and enterprises can use PXE in Configuration Manager to install the update, while IT administrators can deploy push-button reset features using Windows ADK and WinPE add-on.
Timeline
-
21.10.2025 12:01 1 articles · 23h ago
Microsoft releases emergency update KB5070773 to restore WinRE functionality
Microsoft released an emergency update (KB5070773) to fix the WinRE issues caused by the October 2025 security updates (KB5066835). The update restores USB functionality in WinRE, allowing users to navigate recovery options. Affected customers can use touchscreen, PS/2 devices, or USB recovery drives as workarounds. OEMs and enterprises can use PXE in Configuration Manager to install the update, while IT administrators can deploy push-button reset features using Windows ADK and WinPE add-on.
Show sources
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
-
20.10.2025 22:06 2 articles · 1d ago
Microsoft October 2025 Updates Disable USB Input in Windows Recovery Environment
Microsoft's October 2025 security updates (KB5066835) disabled USB mice and keyboards in the Windows Recovery Environment (WinRE), making it unusable for troubleshooting or repairing the OS. This issue affected both client (Windows 11 24H2 and 25H2) and server (Windows Server 2025) platforms. Users were advised to use Bluetooth or PS/2 input devices until a fix was released.
Show sources
- Microsoft: October updates break USB input in Windows Recovery — www.bleepingcomputer.com — 20.10.2025 22:06
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
Information Snippets
-
The October 2025 security updates (KB5066835) disable USB input devices in WinRE.
First reported: 20.10.2025 22:061 source, 2 articlesShow sources
- Microsoft: October updates break USB input in Windows Recovery — www.bleepingcomputer.com — 20.10.2025 22:06
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
-
This issue affects Windows 11 24H2, Windows 11 25H2, and Windows Server 2025.
First reported: 20.10.2025 22:061 source, 2 articlesShow sources
- Microsoft: October updates break USB input in Windows Recovery — www.bleepingcomputer.com — 20.10.2025 22:06
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
-
USB input devices still function normally within the Windows operating system.
First reported: 20.10.2025 22:061 source, 2 articlesShow sources
- Microsoft: October updates break USB input in Windows Recovery — www.bleepingcomputer.com — 20.10.2025 22:06
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
-
Users can switch to Bluetooth or PS/2 input devices as a workaround.
First reported: 20.10.2025 22:061 source, 2 articlesShow sources
- Microsoft: October updates break USB input in Windows Recovery — www.bleepingcomputer.com — 20.10.2025 22:06
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
-
Microsoft is working on a fix, expected to be released in the coming days.
First reported: 20.10.2025 22:061 source, 1 articleShow sources
- Microsoft: October updates break USB input in Windows Recovery — www.bleepingcomputer.com — 20.10.2025 22:06
-
Microsoft released an emergency update (KB5070773) to fix the WinRE issues.
First reported: 21.10.2025 12:011 source, 1 articleShow sources
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
-
The emergency update started rolling out on October 21, 2025.
First reported: 21.10.2025 12:011 source, 1 articleShow sources
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
-
Affected customers can use touchscreen, PS/2 devices, or USB recovery drives as workarounds.
First reported: 21.10.2025 12:011 source, 1 articleShow sources
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
-
OEMs and enterprises can use PXE in Configuration Manager to install the update.
First reported: 21.10.2025 12:011 source, 1 articleShow sources
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
-
IT administrators can deploy push-button reset features using Windows ADK and WinPE add-on.
First reported: 21.10.2025 12:011 source, 1 articleShow sources
- Windows 11 KB5070773 emergency update fixes Windows Recovery issues — www.bleepingcomputer.com — 21.10.2025 12:01
Similar Happenings
Windows 11 updates disrupt localhost HTTP/2 connections
Microsoft's October Windows 11 updates (KB5066835) and September's KB5065789 preview update have caused issues with localhost (127.0.0.1) HTTP/2 connections. Users are experiencing errors such as 'ERR_CONNECTION_RESET' or 'ERR_HTTP2_PROTOCOL_ERROR' when attempting to connect to localhost. This affects various applications, including Visual Studio debugging, SSMS Entra ID authentication, and the Duo Desktop app. The issue also affects Windows Server 2025 systems and is linked to a bug in the HTTP.sys Windows-based web server for ASP.NET Core. Microsoft has provided a temporary fix via Known Issue Rollback (KIR) for non-managed business devices and most home users. IT administrators can resolve the issue on managed devices by installing and configuring a specific KIR group policy. A permanent fix will be included in a future Windows update.
Microsoft October 2025 Patch Tuesday fixes 6 zero-days, 183 flaws
Microsoft's October 2025 Patch Tuesday marks the end of free security updates for Windows 10, with the release of the final cumulative update KB5066791. This update addresses 183 vulnerabilities, including six zero-day flaws, and is mandatory for all Windows 10 users. Extended Security Updates (ESU) are available for purchase for up to three years for enterprise users and one year for consumers. The patches cover a range of vulnerabilities, including critical remote code execution and elevation of privilege issues. The zero-day vulnerabilities affect various components, such as Windows SMB Server, Microsoft SQL Server, Windows Agere Modem Driver, Windows Remote Access Connection Manager, AMD EPYC processors, and TCG TPM 2.0. Some of these flaws have been publicly disclosed or actively exploited. The update also includes fixes for vulnerabilities in third-party components, such as IGEL OS and AMD EPYC processors. Additionally, Microsoft Office users should be aware of CVE-2025-59227 and CVE-2025-59234, which exploit the Preview Pane. The update is the largest on record for Microsoft, with 183 CVEs, pushing the number of unique vulnerabilities released so far this year to more than 1,021. The update includes fixes for a wide range of vulnerabilities, including remote code execution (RCE), elevation of privilege, data theft, denial of service (DoS), and security feature bypass issues. The update also marks the end of life for Windows 10, meaning Microsoft will no longer issue regular patches for vulnerabilities in the operating system as part of its regular Patch Tuesday updates. Exchange Server 2016, Exchange Server 2019, Skype for Business 2016, Windows 11 IoT Enterprise Version 22H2, and Outlook 2016 are also reaching end-of-life. Windows 10 users can opt for Extended Security Updates (ESU) for one year at a cost of $30, or install Linux as an alternative. Linux Mint is recommended for Windows 10 users transitioning to Linux, with compatibility for most computers from the last decade. The October 2025 Windows security updates cause smart card authentication and certificate issues across all Windows 10, Windows 11, and Windows Server releases. The issue is due to a security fix designed to address a security feature bypass vulnerability (CVE-2024-30098) in the Windows Cryptographic Services. Affected users may experience various symptoms, including the inability to sign documents, failures in applications using certificate-based authentication, and smart cards not being recognized as CSP providers in 32-bit apps. The issue can be detected by the presence of Event ID 624 in the System event logs for the Smart Card Service prior to installing the October 2025 Windows security update. The fix is enabled by setting the DisableCapiOverrideForRSA registry key value to 1 to isolate cryptographic operations from the Smart Card implementation. Users experiencing authentication problems can manually resolve the issue by disabling the DisableCapiOverrideForRSA registry key. The DisableCapiOverrideForRSA registry key will be removed in April 2026, and users are advised to work with their application vendors to resolve the underlying problem. Microsoft also fixed another known issue breaking IIS websites and HTTP/2 localhost (127.0.0.1) connections after installing recent Windows security updates.