Find notable cyber news and cases, enriched with sources, timelines, and signals.

Microsoft security patch release for CVE-2023-43896

Security Patch Release
First reported
Last updated
Happening score
H score 25
1 unique sources, 1 articles

Summary

Hide ▲

Microsoft's April 2026 Windows security updates are blocking psmounterex.sys, which can break third-party backup apps on Windows 10, Windows 11, and Windows Server. The change adds the driver to the Vulnerable Driver Blocklist to protect systems against CVE-2023-43896, a high-severity buffer overflow that can enable privilege escalation or arbitrary code execution. Impacted products include Macrium Reflect, Acronis Cyber Protect Cloud, UrBackup Server, and NinjaOne Backup. Microsoft said affected customers should move to newer app versions that use updated drivers rather than pausing the update.

Related Happenings

Microsoft Windows 11 KB5089549 cumulative update

Security Patch Release
H score19 First: 18.05.2026 11:33 Last: 18.05.2026 11:33 Sources 1

About this happening: Microsoft's **KB5089549** **Windows 11** security update is failing to install on some systems, forcing affected devices to roll back during reboot. The problem is tied to a nearl...

Azure Backup for AKS Trusted Access permission tightening

Security Patch Release
H score8 First: 16.05.2026 23:55 Last: 16.05.2026 23:55 Sources 1

About this happening: **Microsoft** appears to have silently tightened **Azure Backup for AKS**, closing a **Trusted Access** authorization path that could let a low-privileged role reach **cluster-adm...

Microsoft adds Cloud-Initiated Driver Recovery for Windows Update driver rollbacks

Security Tool/Service
H score10 First: 15.05.2026 15:29 Last: 15.05.2026 15:29 Sources 1

About this happening: Microsoft is adding **Cloud-Initiated Driver Recovery** to **Windows Update**, giving it a remote rollback control for **problematic Windows drivers**. The capability reduces how...

Microsoft Windows Autopatch fix for EU restricted driver update deployment bug

Security Tool/Service
H score11 First: 13.05.2026 17:36 Last: 13.05.2026 17:36 Sources 1

About this happening: **Microsoft** fixed a **Windows Autopatch** service bug that let **restricted driver updates** reach some managed devices in the **EU**, bypassing admin approval controls and crea...

Microsoft May 2026 Patch Tuesday release

Security Patch Release
H score44 First: 13.05.2026 13:36 Last: 13.05.2026 13:36 Sources 1

About this happening: Microsoft's **May 13, 2026 Patch Tuesday** release fixed **138 vulnerabilities** across its product portfolio, including **Windows**, **Azure**, and **Edge**. None of the flaws we...

Latest development: 01.06.2026 15:30

Belgium's Centre for Cybersecurity warned that CVE-2026-41089 in Windows Netlogon is being actively exploited in the wild after Microsoft patched the stack-based buffer overflow during the May 2026 Patch Tuesday. The flaw affects all currently supported Windows Server versions, including Windows Server 2025, and can let an unauthenticated attacker gain remote code execution on targeted domain controllers.

Timeline

  1. 04.05.2026 13:40 2 articles · 2mo ago

    Microsoft confirms April 2026 Windows security updates block psmounterex.sys

    Initial Disclosure

    Microsoft confirmed that the April 2026 Windows security updates added psmounterex.sys to the Vulnerable Driver Blocklist to protect systems against CVE-2023-43896, and that the change can prevent third-party backup applications from mounting or managing disk images, especially when they rely on VSS snapshots on Windows 10, Windows 11, and Windows Server. Affected customers are advised to move to newer app versions that use newer drivers rather than pausing or uninstalling the update.

    Show sources