Microsoft released its July 2026 Patch Tuesday cumulative updates for Windows 11, addressing numerous security vulnerabilities and enhancing Secure Boot functionalities. The updates include:
- KB5101650 for Windows 11 25H2 and 24H2, updating systems to builds 26200.8875 and 26100.8875.
- KB5101649 for Windows 11 26H1, updating devices to build 28000.2525.
The release addresses a total of 622 Microsoft Common Vulnerabilities and Exposures (CVEs), including:
- 416 vulnerabilities in Windows.
- Fixes for Microsoft Office, Edge, Exchange Server, SharePoint Server, SQL Server, Defender, and Azure services.
Key vulnerabilities fixed include:
- CVE-2026-50661: A BitLocker Security Feature Bypass vulnerability.
- CVE-2026-56155: An AD FS Elevation of Privilege vulnerability that has been exploited.
- CVE-2026-56164: A SharePoint Server Elevation of Privilege vulnerability.
The updates also introduce new Secure Boot certificates, rectify issues from previous patches affecting third-party applications, and incorporate curl 8.21.0 for security improvements. Users are advised to back up data before installation, which requires a system reboot.