Microsoft Windows Server 2025 KB5082063 BitLocker recovery update
Security Patch Release
Summary
Hide ▲
Show ▼
Microsoft's April 2026 KB5082063 update can push some Windows Server 2025 devices into BitLocker recovery, creating a first-restart disruption for a narrow set of enterprise-managed systems.
Related Happenings
Microsoft Windows Server 2016 KB5094122 installation failures resolved
Service Disruption
H score1
First: 18.06.2026 13:14
Last: 18.06.2026 13:14
Sources 1
About this happening:
Microsoft resolved a **Windows Server 2016** update-installation failure that blocked **June 2026 security updates** on some unpatched servers. Affected devices could hit **0x8007...
Microsoft Windows Server 2016 KB5094122 installation failures resolved
Service DisruptionAbout this happening: Microsoft resolved a **Windows Server 2016** update-installation failure that blocked **June 2026 security updates** on some unpatched servers. Affected devices could hit **0x8007...
Microsoft Windows Server 2025 and Windows 11 23H2 BitLocker recovery fix
Security Patch Release
H score15
First: 11.06.2026 11:44
Last: 11.06.2026 11:44
Sources 1
About this happening:
Microsoft shipped **KB5094125** for **Windows Server 2025** and **KB5093998** for **Windows 11 23H2** to fix a **BitLocker recovery** bug tied to the **April 2026 security update*...
Microsoft Windows Server 2025 and Windows 11 23H2 BitLocker recovery fix
Security Patch ReleaseAbout this happening: Microsoft shipped **KB5094125** for **Windows Server 2025** and **KB5093998** for **Windows 11 23H2** to fix a **BitLocker recovery** bug tied to the **April 2026 security update*...
Microsoft BitLocker recovery prompt workaround
Advisory/Mitigation
H score25
First: 09.06.2026 21:35
Last: 09.06.2026 21:35
Sources 1
About this happening:
Microsoft issued a **temporary workaround** for **BitLocker recovery prompts** on some **Windows** systems after recent updates. The issue affects devices configured with a **BitL...
Microsoft BitLocker recovery prompt workaround
Advisory/MitigationAbout this happening: Microsoft issued a **temporary workaround** for **BitLocker recovery prompts** on some **Windows** systems after recent updates. The issue affects devices configured with a **BitL...
Microsoft Windows Known Issue Rollback guidance for KB5089549
Advisory/Mitigation
H score14
First: 01.06.2026 13:59
Last: 01.06.2026 13:59
Sources 1
About this happening:
Microsoft's **Known Issue Rollback** guidance gives **Windows 11** users and admins a workaround for **KB5089549** installation failures caused by low **EFI System Partition (ESP)...
Microsoft Windows Known Issue Rollback guidance for KB5089549
Advisory/MitigationAbout this happening: Microsoft's **Known Issue Rollback** guidance gives **Windows 11** users and admins a workaround for **KB5089549** installation failures caused by low **EFI System Partition (ESP)...
Windows BitLocker YellowKey mitigation guidance (CVE-2026-45585)
Advisory/Mitigation
H score32
First: 20.05.2026 10:31
Last: 20.05.2026 10:31
Sources 1
About this happening:
**Windows BitLocker** **YellowKey** (**CVE-2026-45585**) moved from interim mitigation to patch status after **Microsoft** fixed it in **June 2026 Patch Tuesday**. The **Windows R...
Windows BitLocker YellowKey mitigation guidance (CVE-2026-45585)
Advisory/MitigationAbout this happening: **Windows BitLocker** **YellowKey** (**CVE-2026-45585**) moved from interim mitigation to patch status after **Microsoft** fixed it in **June 2026 Patch Tuesday**. The **Windows R...
Latest development: 10.06.2026 12:57
On Tuesday, Microsoft fixed YellowKey (CVE-2026-45585) as part of its June 2026 Patch Tuesday updates and shared mitigation measures for the Windows Recovery Environment backdoor. The flaw affects unpatched Windows 11 and Windows Server 2022/2025 systems and can let attackers with physical access bypass BitLocker protection on targeted devices.
Timeline
-
15.04.2026 14:41 2 articles · 2mo ago
Microsoft confirms KB5082063 BitLocker recovery prompts on some Windows Server 2025 devices
Initial DisclosureMicrosoft confirms that some Windows Server 2025 devices with BitLocker enabled can boot into BitLocker recovery after installing KB5082063 when the device uses the Group Policy 'Configure TPM platform validation profile for native UEFI firmware configurations' with PCR7 included, has the Windows UEFI CA 2023 certificate in Secure Boot DB, and is not already running the 2023-signed Windows Boot Manager; the company says the recovery key should be needed only once and advises admins to remove the Group Policy before deployment or use a Known Issue Rollback (KIR).
Show sources
- Microsoft: April updates trigger BitLocker key prompts on some servers — www.bleepingcomputer.com — 15.04.2026 14:41
- Microsoft: April updates trigger BitLocker key prompts on some servers — www.bleepingcomputer.com — 15.04.2026 14:41