Let’s check the details of the May 2023 Patch Tuesday for Windows 10. Windows 10 KB5026361 updates were released by Microsoft to fix known issues, and security vulnerabilities and improve performance. Windows 11 KB5026368 KB5026372 patches were also released.
The latest Windows 10 KB5026361 update addresses security issues for your Windows operating system, a known problem, and security updates fix 3 actively exploited zero-day vulnerabilities. Another vulnerability fixed by Microsoft is FIX Windows Boot Manager Vulnerability CVE-2023-24932 BlackLotus UEFI Bootkit.
There is no significant improvement as part of this May Patch Tuesday LCU KB5026361 for Windows 10. As of today, May 9, 2023, all editions of Windows 10, version 20H2, have reached the end of their service life. This means that devices running these versions will no longer receive monthly security updates, which are crucial for protecting against the latest security threats.
On October 14, 2025, support for Windows 10 will come to an end. The latest version of Windows 10, 22H2, will also be the final version. Until the end-of-support date, which is October 14, 2025, the current version will continue to receive patches and updates at no extra cost, Goodbye To Windows 10 With 22H2 Version.
Video – May Patch Tuesday | 3 Zero-day Vulnerabilities
Let’s check out 2023 May Patch Tuesday | 3 Zero-day Vulnerabilities | KB5026372, KB5026368, KB5026361, and KB5026362.
Zero Day Security Vulnerability
3 Zero-Day Security Vulnerabilities with Windows OLE Remote Code Execution Vulnerability CVE-2023-29325. Also, Secure Boot Security Feature Bypass Vulnerability CVE-2023-24932 and Win32k Elevation of Privilege Vulnerability CVE-2023-29336. More details – Another Outlook Zero Day Vulnerability With May 2023 Patch Tuesday.
CVE-2023-29325 – The exploitation of the vulnerability might involve either a victim opening a specially crafted email with an affected version of Microsoft Outlook software or a victim’s Outlook application displaying a preview of a specially crafted email. This could result in the attacker executing remote code on the victim’s machine.
CVE-2023-24932 – The security update addresses the vulnerability by updating the Windows Boot Manager, but it is not enabled by default. Additional steps are required at this time to mitigate the vulnerability. Please refer to the following for steps to determine the impact on your environment: KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932.
- CVE-2023-29336 – An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.
|Release Date||CVE Number||CVE Title||Publicly Disclosed||Exploitability Assessment||Exploited||Impact||Max Severity||Tag|
|May 9, 2023||CVE-2023-29325||Windows OLE Remote Code Execution Vulnerability||Yes||Exploitation More Likely||No||Remote Code Execution||Critical||Windows OLE|
|May 9, 2023||CVE-2023-24932||Secure Boot Security Feature Bypass Vulnerability||Yes||Exploitation Detected||Yes||Security Feature Bypass||Important||Windows Secure Boot|
|May 9, 2023||CVE-2023-29336||Win32k Elevation of Privilege Vulnerability||No||Exploitation Detected||Yes||Elevation of Privilege||Important||Windows Win32K|
How to Seek Windows Updates?
Windows 11 allows you to choose when and how to receive the latest updates to ensure your device runs efficiently and securely. To manage your update preferences and view available updates, select “Check for Windows updates.”
Alternatively, you can seek the latest Windows update by selecting Start > Settings > Windows Update by accessing the update settings.
Microsoft releases security updates on “Patch Tuesday,” the second Tuesday of each month at 10:00 AM PST. IT professionals should plan their deployment schedules according to their time zone(s).
Improvements with Windows 10 May Patches
Let’s quickly look at the Improvements with Windows 10 May Patches. There is little improvement with Windows 10 as Microsoft concentrates on Windows 11 instead of Windows 10. More details on Windows 10 known issues – Windows 10, version 22H2 known issues.
The May patch update added a new feature, language preferences sync. This update adds the ability to sync language and region settings when you change your Microsoft account display language or regional format. Windows will save those settings to your account if you have turned on Language preferences sync in your Windows backup settings.
FIXES Windows 10 KB5026361 May Patch
Let’s look at the issues fixed with Windows 10 May patch Tuesday KBs (KB5026368 and KB5026372). The following list covers both Windows 10 22H2 and 21H2 fixes.
- May patch KB5026361 update addresses an issue that affects Microsoft Edge IE mode. Pop-up windows open in the background instead of in the foreground.
- Microsoft Edge IE mode Issus is fixed with May 2023 patch Tuesday updates. IE Mode Pop-up windows open in the background instead of in the foreground.
- This patch also fixed the issue related to Xbox, as explained – Xbox Elite users who have the Xbox Adaptive Controller. This update applies to your controller remapping preferences on the desktop.
- The taskbar flicker issue is also resolved with this Windows 10 May patch. This update addresses an issue that might affect news and interests. It might flicker on the taskbar, and File Explorer might stop responding.
SCCM Windows 10 KB5026361 Deployment
Learn how to Deploy Windows 10 KB5026361 May 2023 Cumulative Updates using SCCM/WSUS. You can deploy Windows 10 May 2023 CU KBs using Intune or SCCM.
Using the following methods, you can create a monthly patch package for May 2023. You can also search with Windows 10 LCU for May 2023 KB5026361. The easiest way is to check from the SCCM admin console.
NOTE! You can verify the Windows 10 (OS Builds 19042.2965, 19044.2965, and 19045.2965) by installing May 2023 Latest Cumulative Updates.
- In SCCM Console, Navigate to Software Library\Overview\Software Updates\All Software Updates.
- You must initiate a WSUS Sync from the All Software Updates node (Right-click on the node and initiate the sync).
- Search with the following KB5026361 Number.
- Or you can search with 23-05 Cumulative Update for Windows 10, as shown in the below screenshot.
|Name of Windows 10 Patch||KB Article||Release Date|
|2023-05 Cumulative Update for Windows 10 Version 22H2 for ARM64-based Systems (KB5026361)||5025221||5/09/2023 5:00:00 PM|
|2023-05 Cumulative Update for Windows 10 Version 22H2 for x64-based Systems (KB5026361)||5025221||5/09/2023 5:00:00 PM|
|2023-05 Cumulative Update for Windows 10 Version 22H2 for x86-based Systems (KB5026361)||5025221||5/09/2023 5:00:00 PM|
|2023-05 Cumulative Update for Windows 10 Version 20H2 for x86-based Systems (KB5026361)||5025221||5/09/2023 5:00:00 PM|
|2023-05 Cumulative Update for Windows 10 Version 20H2 for x64-based Systems (KB5026361)||5025221||5/09/2023 5:00:00 PM|
|2023-05 Cumulative Update for Windows 10 Version 20H2 for ARM64-based Systems (KB5026361)||5025221||5/09/2023 5:00:00 PM|
|2023-05 Cumulative Update for Windows 10 Version 21H2 for ARM64-based Systems (KB5026361)||5025221||5/09/2023 5:00:00 PM|
|2023-05 Cumulative Update for Windows 10 Version 21H2 for x86-based Systems (KB5026361)||5025221||5/09/2023 5:00:00 PM|
|2023-05 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5026361)||5025221||5/09/2023 5:00:00 PM|
- How to Create Deploy New Software Update Patch Package Using SCCM | ConfigMgr
- SCCM ADR Automatic Deployment Rule Creation Process
Intune Windows 10 KB5026361 Deployment
Let’s check how to deploy the May 2023 Patch Tuesday (LCU) Deployment using Intune. You can deploy Windows 10 May CU using Microsoft Intune. The patch deployment process in Microsoft Intune is different from that of SCCM.
I don’t think creating a new patch deployment policy to cater to monthly CU deployments is mandatory, but you can use the following method to expedite. The existing patch deployment policy will deliver the patches using WUfB (Windows Update for Business).
You have the option to expedite the Installation of May 2023 quality updates. Create expedited update profiles for Quality updates using the following steps.
- Sign in to the Microsoft Intune admin center https://intune.microsoft.com/
- Navigate Device -> Windows 10 quality Updates.
- Click on +Create Profile.
The following are the Settings for Intune quality update profile for the monthly patching process if you want to expedite the deployment of patches. Otherwise, you can use the standard quality updates policy from Intune.
- Name – Windows 10 May 2023 LCU.
- Description – Recommend adding a detailed description.
- Expedite installation of quality updates if the device OS version is less than 9th May 2023 – 2023.05 B Security Updates for Windows 10 and later
- Number of days to wait before the restart is enforced – 1 Day
Windows 10 KB5026361 Direct Download Links
Let’s manually download the 2023 May Cumulative Update for Windows 10 (KB5026361) from the Microsoft Update Catalog website. The following tables provide the direct links to download the May 2023 Cumulative Updates for Windows 10.
You can check the Microsoft Update Catalog portal to get the direct download links to the hotfixes for May 2023 LCU. Check this out Microsoft Update Catalog – https://www.catalog.update.microsoft.com/
|2023-05 Cumulative Update for Windows 10 Version 22H2 for x64-based Systems (KB5026361)||Windows 10 22H2||746.0 MB||Download|
Jitesh has over 5 years of working experience in the IT Industry. He writes and shares his experiences related to Microsoft device management technologies and IT Infrastructure management. His primary focus area is Windows 10 Deployment solution with Configuration Manager, Microsoft Deployment Toolkit (MDT), and Microsoft Intune.