Windows 11 KB5074109 & KB5073455 cumulative updates released
by Mayank Parmar · BleepingComputerMicrosoft has released Windows 11 KB5074109 and KB5073455 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features.
Today's updates are mandatory as they contain the January 2026 Patch Tuesday security patches for vulnerabilities discovered in previous months.
You can install today's update by going to Start > Settings > Windows Update and clicking on 'Check for Updates.'
You can also manually download and install the update from the Microsoft Update Catalog.
This is the third 'Patch Tuesday' release for version 25H2, but as it's based on version 24H2, there are no exclusive or special changes. You'll get the same fixes across the two versions of Windows 11.
What's new in the January 2026 Patch Tuesday update
After installing today's security updates, Windows 11 25H2 (KB5074109) will have its build number changed to Build 26200.7623 (or 26100.7462 in case of 24H2), and 23H2 (KB5073455) will be changed to 226x1.6050.
This update mostly contains bug fixes, and here's everything you need to know:
- [Compatibility] This update removes the following modem drivers: agrsm64.sys (x64), agrsm.sys (x86), smserl64.sys (x64) and smserial.sys (x86). Modem hardware dependent on these specific drivers will no longer work in Windows.
- [Networking (known issues)] Fixed: This update addresses an issue where mirrored networking in Windows Subsystem for Linux (WSL) could fail causing “No route to host” errors and preventing access to corporate resources over VPN connections, even when the Windows host remained connected. This might occur after installing KB5067036. Fixed: This update addresses an issue where you might experience RemoteApp connection failures in Azure Virtual Desktop (AVD) environments. This might occur after installing KB5070311.
- [Power & Battery] Fixed: This update addresses an issue where devices with a Neural Processing Unit (NPU) might stay powered on when idle. This could affect power performance.
- [Secure Boot] Starting with this update, Windows quality updates include a subset of high confidence device targeting data that identifies devices eligible to automatically receive new Secure Boot certificates. Devices will receive the new certificates only after demonstrating sufficient successful update signals, ensuring a safe and phased deployment.
- [Windows Deployment Services (WDS] This update introduces a change in behavior in which WDS will stop supporting hands-free deployment functionality by default. Detailed guidance for IT administrators is available in Windows Deployment Services (WDS) Hands‑Free Deployment Hardening Guidance.
- [WinSqlite3.dll] Fixed: The Windows core component, WinSqlite3.dll, has been updated. Previously, some security software might have detected this component as vulnerable.
Microsoft is not aware of new issues with this month's Patch Tuesday, except for a bug that hides the button that makes the password field visible.
7 Security Best Practices for MCP
As MCP (Model Context Protocol) becomes the standard for connecting LLMs to tools and data, security teams are moving fast to keep these new services safe.
This free cheat sheet outlines 7 best practices you can start using today.