Microsoft has launched new updates for Windows 10 and Windows 11 to resolve a series of bugs and vulnerabilities, including two ‘zero-day’ failures.
The company has released the patches within the framework of the ‘Patch Tuesday’ Marchin which the Windows 10 update KB5078885 has drawn attention, which includes security fixes and technical improvements in aspects such as the graphics system.
Additionally, updates KB5079473 and KB5078883 have been released for Windows 11, which fix up to 79 vulnerabilitiestwo of them ‘zero-day’, which could have been exploited by attackers before Microsoft could correct them.
UPDATE FOR WINDOWS 10
Microsoft has released the update KB5078885 for the Windows 10 versions 22H2 and 21H2with improvements in the system image managerwith a new prompt for users confirming that the file comes from a trusted source.
It also allows you to create backup copies for new files named with Chinese and private use area characters in the ‘File History’ in ‘Control Panel’. And in the graphic sectionthe update fixes a stability issue affecting certain GPU configurations.
On the other hand, this new patch includes updates to the Secure Boot certificates before they expire next June. Specifically, the update introduces additional device identification data based on diagnostic data, increasing the coverage of eligible devices to automatically receive new Secure Boot certificates.
To download the update, users need to be enrolled in the Extended security update program (ESU, for its acronym in English), launched in October 2025. Once inside, you must go to ‘Settings’, ‘Updates’ and download it.
UPDATES FOR WINDOWS 11
Although the Windows 10 update has caught the attention of users, Microsoft has released the KB5079473 patch for the Windows 11 versions 25H2 and 24H2and KB5078883 for the OS version 23H2.
He patch (KB5079473) It features the same update to Secure Boot and Image Manager, and improves the reliability of ‘File Explorer’ searching across multiple drives or ‘This Computer’.
Additionally, the update includes an improvement to the way the Windows Defender Application Control (WDAC) controls allowlist directives for COM objects.
For his part, the patch (KB5078883) It also includes improved graphics, image manager, and file history. Additionally, it adds the new Saudi Riyal currency symbol to Windows fonts.
Although it also incorporates the secure boot update, it presents two new PowerShell features to help users manage the ongoing deployment of the Secure Boot Key.
ERRORS AND VULNERABILITIES
The patches have corrected a total of 79 vulnerabilities, among which were errors that allowed identity theft, access to administrator permissions, remote execution of malicious code, exposure of sensitive data or circumvention of Windows protection mechanisms.
However, the most dangerous were two ‘zero-day’ errors. The vulnerability identified as CVE-2026-21262 and discovered by researcher Erland Sommarskog, allowed attackers to obtain administrator privileges on SQL Server.
On the other hand, the vulnerability identified as CVE-2026-26127 It consisted of a .NET denial of service flaw, in which the attacker could cause the service to stop working remotely.