CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Microsoft releases Windows 10 KB5075912 extended security update

First reported
Last updated
1 unique sources, 2 articles

Summary

Hide ▲

Microsoft has continued to issue extended security updates for Windows 10, addressing critical vulnerabilities and platform stability issues. The May 2026 KB5087544 update fixes Patch Tuesday vulnerabilities, resolves Remote Desktop security warning rendering problems in multi-monitor environments, and advances Secure Boot certificate deployment through improved device targeting and reporting. The update raises Windows 10 to build 19045.7291 (Enterprise LTSC 2021 to 19044.7291) and introduces a Daylight Saving Time adjustment for Egypt. Earlier, Microsoft released KB5075912 in February 2026 to remediate six zero-day vulnerabilities and continue replacing expiring Secure Boot certificates. That update addressed shutdown/hibernation failures when System Guard Secure Launch was enabled, incorporated Chinese font changes for GB18030-2022A compliance, and resolved stability issues affecting certain GPU configurations. Microsoft has emphasized a controlled, phased rollout of Secure Boot certificate replacements to mitigate bypass risks from expiring certificates. The updates remain available to Windows 10 Enterprise LTSC users and ESU program participants.

Timeline

  1. 10.02.2026 21:06 2 articles · 3mo ago

    Microsoft releases Windows 10 KB5075912 extended security update

    Microsoft has released the Windows 10 KB5075912 extended security update to fix February 2026 Patch Tuesday vulnerabilities, including six zero-days, and to continue rolling out replacements for expiring Secure Boot certificates. The update addresses several known issues, including a problem preventing devices from shutting down or hibernating if System Guard Secure Launch is enabled. It also includes changes to Chinese fonts and GPU stability fixes. This article clarifies that the broader Windows 10 extended security update program continues with the May 2026 KB5087544 release, which addresses additional Patch Tuesday vulnerabilities, corrects Remote Desktop security warning rendering issues in multi-monitor configurations, improves Secure Boot state reporting and targeted certificate deployment, and includes a Daylight Saving Time adjustment for Egypt. A known issue involving BitLocker recovery key prompts under specific TPM Group Policy configurations is also documented.

    Show sources
    Open in new tab

Information Snippets

Similar Happenings

Microsoft Releases Windows 10 KB5078885 Extended Security Update

Microsoft has released the Windows 10 KB5078885 extended security update to address vulnerabilities disclosed during the March 2026 Patch Tuesday. The update fixes two actively exploited zero-days and resolves an issue preventing some devices from shutting down. The update is available for Windows 10 Enterprise LTSC and devices enrolled in the Extended Security Updates (ESU) program. The update addresses 79 vulnerabilities, including security fixes and bug fixes introduced by previous updates. It also includes improvements to File History, Graphics, Secure Boot, and Fonts. Microsoft is rolling out new Secure Boot certificates to replace older 2011 certificates that expire in June 2026.

Open in new tab

Microsoft March and April 2026 Patch Tuesdays Address Multiple Zero-Days and Critical Flaws

Microsoft’s multi-month Patch Tuesday campaign continues with the April 2026 release addressing 167 security vulnerabilities in Windows and related software, including two actively exploited zero-days (CVE-2026-32201 in SharePoint Server and CVE-2026-33825 in Microsoft Defender). Nearly 60% of the patched flaws are elevation-of-privilege bugs, marking the highest proportion in eight months, while eight Critical vulnerabilities were addressed, including unauthenticated remote code execution flaws in Windows IKE Service Extensions (CVE-2026-33824, CVSS 9.8) and secure tunneling components (CVE-2026-33827, CVSS 8.1). Following the April updates, threat actors are now exploiting two additional unpatched Microsoft Defender zero-days—RedSun and UnDefend—alongside the patched CVE-2026-33825 (BlueHammer). Exploitation activity has been observed since April 10, 2026, with RedSun and UnDefend PoCs deployed on April 16, 2026, featuring hands-on-keyboard techniques such as whoami /priv, cmdkey /list, and net group commands. Huntress confirmed real-world exploitation and took steps to isolate compromised systems to prevent post-exploitation damage. Threat actors have also been observed chaining these flaws with other vulnerabilities to achieve full endpoint control. Microsoft issued out-of-band emergency patches for CVE-2026-40372, a critical ASP.NET Core privilege escalation vulnerability in the ASP.NET Core Data Protection cryptographic APIs. The flaw enables unauthenticated attackers to gain SYSTEM privileges by forging authentication cookies, stemming from a regression in Microsoft.AspNetCore.DataProtection 10.0.0-10.0.6 packages. Microsoft recommends updating to version 10.0.7 and rotating the DataProtection key ring to fully remediate. The April updates were distributed through Windows 11 cumulative updates KB5083769 (for versions 25H2/24H2) and KB5082052 (for 23H2), changing build numbers to 26200.8246 (25H2), 26100.8246 (24H2), and 22631.6936 (23H2). Windows 10 Enterprise LTSC and ESU participants received the April fixes via KB5082200, updating to build 19045.7184 (Windows 10) or 19044.7184 (Windows 10 Enterprise LTSC 2021).

Open in new tab

Microsoft Releases New Secure Boot Certificates Ahead of June 2026 Expiration

Microsoft has started rolling out new Secure Boot certificates through monthly Windows updates to replace the original 2011 certificates that will expire in late June 2026. These certificates are crucial for ensuring that only trusted bootloaders can load on UEFI firmware, preventing malicious software like rootkits from executing during system startup. The update process involves firmware updates across millions of device configurations from various hardware manufacturers and OEMs. Devices that do not receive the updated certificates will enter a 'degraded security state' with limited boot-level protections. Microsoft advises customers to upgrade to Windows 11, as unsupported versions like Windows 10 will not receive the new certificates.

Open in new tab

Microsoft Releases Windows 10 KB5073724 Extended Security Update

Microsoft has released the KB5073724 extended security update for Windows 10, addressing three zero-day vulnerabilities and expiring Secure Boot certificates. The update is available for Windows 10 Enterprise LTSC and systems enrolled in the Extended Security Update (ESU) program. It removes specific modem drivers, updates the WinSqlite3.dll component, and phases in new Secure Boot certificates to prevent potential security breaches. The update brings Windows 10 to build 19045.6809 and Windows 10 Enterprise LTSC 2021 to build 19044.6809.

Open in new tab

Microsoft Releases Emergency Update for Windows 10 ESU Enrollment Bug

Microsoft has issued an emergency out-of-band update (KB5071959) to fix a bug preventing Windows 10 users from enrolling in the Extended Security Updates (ESU) program. This update resolves an issue in the ESU enrollment wizard that caused failures during the enrollment process. Once installed, users can successfully enroll their devices and receive ongoing security updates. Windows 10 reached end-of-support on October 14, 2025, making ESU enrollment crucial for continued security updates. The ESU program costs $30 for home users and $61 per device per year for enterprises, with escalating costs for multi-year commitments.

Open in new tab