Microsoft security patch release for CVE-2023-43896
Security Patch Release
Summary
Hide ▲
Show ▼
Microsoft's April 2026 Windows security updates are blocking psmounterex.sys, which can break third-party backup apps on Windows 10, Windows 11, and Windows Server. The change adds the driver to the Vulnerable Driver Blocklist to protect systems against CVE-2023-43896, a high-severity buffer overflow that can enable privilege escalation or arbitrary code execution. Impacted products include Macrium Reflect, Acronis Cyber Protect Cloud, UrBackup Server, and NinjaOne Backup. Microsoft said affected customers should move to newer app versions that use updated drivers rather than pausing the update.
Related Happenings
Microsoft Windows 11 KB5089549 cumulative update
Security Patch Release
H score19
First: 18.05.2026 11:33
Last: 18.05.2026 11:33
Sources 1
About this happening:
Microsoft's **KB5089549** **Windows 11** security update is failing to install on some systems, forcing affected devices to roll back during reboot. The problem is tied to a nearl...
Microsoft Windows 11 KB5089549 cumulative update
Security Patch ReleaseAbout this happening: Microsoft's **KB5089549** **Windows 11** security update is failing to install on some systems, forcing affected devices to roll back during reboot. The problem is tied to a nearl...
Azure Backup for AKS Trusted Access permission tightening
Security Patch Release
H score8
First: 16.05.2026 23:55
Last: 16.05.2026 23:55
Sources 1
About this happening:
**Microsoft** appears to have silently tightened **Azure Backup for AKS**, closing a **Trusted Access** authorization path that could let a low-privileged role reach **cluster-adm...
Azure Backup for AKS Trusted Access permission tightening
Security Patch ReleaseAbout this happening: **Microsoft** appears to have silently tightened **Azure Backup for AKS**, closing a **Trusted Access** authorization path that could let a low-privileged role reach **cluster-adm...
Microsoft adds Cloud-Initiated Driver Recovery for Windows Update driver rollbacks
Security Tool/Service
H score10
First: 15.05.2026 15:29
Last: 15.05.2026 15:29
Sources 1
About this happening:
Microsoft is adding **Cloud-Initiated Driver Recovery** to **Windows Update**, giving it a remote rollback control for **problematic Windows drivers**. The capability reduces how...
Microsoft adds Cloud-Initiated Driver Recovery for Windows Update driver rollbacks
Security Tool/ServiceAbout this happening: Microsoft is adding **Cloud-Initiated Driver Recovery** to **Windows Update**, giving it a remote rollback control for **problematic Windows drivers**. The capability reduces how...
Microsoft Windows Autopatch fix for EU restricted driver update deployment bug
Security Tool/Service
H score11
First: 13.05.2026 17:36
Last: 13.05.2026 17:36
Sources 1
About this happening:
**Microsoft** fixed a **Windows Autopatch** service bug that let **restricted driver updates** reach some managed devices in the **EU**, bypassing admin approval controls and crea...
Microsoft Windows Autopatch fix for EU restricted driver update deployment bug
Security Tool/ServiceAbout this happening: **Microsoft** fixed a **Windows Autopatch** service bug that let **restricted driver updates** reach some managed devices in the **EU**, bypassing admin approval controls and crea...
Microsoft May 2026 Patch Tuesday release
Security Patch Release
H score44
First: 13.05.2026 13:36
Last: 13.05.2026 13:36
Sources 1
About this happening:
Microsoft's **May 13, 2026 Patch Tuesday** release fixed **138 vulnerabilities** across its product portfolio, including **Windows**, **Azure**, and **Edge**. None of the flaws we...
Microsoft May 2026 Patch Tuesday release
Security Patch ReleaseAbout this happening: Microsoft's **May 13, 2026 Patch Tuesday** release fixed **138 vulnerabilities** across its product portfolio, including **Windows**, **Azure**, and **Edge**. None of the flaws we...
Latest development: 01.06.2026 15:30
Belgium's Centre for Cybersecurity warned that CVE-2026-41089 in Windows Netlogon is being actively exploited in the wild after Microsoft patched the stack-based buffer overflow during the May 2026 Patch Tuesday. The flaw affects all currently supported Windows Server versions, including Windows Server 2025, and can let an unauthenticated attacker gain remote code execution on targeted domain controllers.
Timeline
-
04.05.2026 13:40 2 articles · 2mo ago
Microsoft confirms April 2026 Windows security updates block psmounterex.sys
Initial DisclosureMicrosoft confirmed that the April 2026 Windows security updates added psmounterex.sys to the Vulnerable Driver Blocklist to protect systems against CVE-2023-43896, and that the change can prevent third-party backup applications from mounting or managing disk images, especially when they rely on VSS snapshots on Windows 10, Windows 11, and Windows Server. Affected customers are advised to move to newer app versions that use newer drivers rather than pausing or uninstalling the update.
Show sources
- Microsoft confirms April Windows updates cause backup failures — www.bleepingcomputer.com — 04.05.2026 13:40
- Microsoft confirms April Windows updates cause backup failures — www.bleepingcomputer.com — 04.05.2026 13:40