Microsoft Releases Cumulative Update for Windows 10 With July Patch Tuesday 2025
Microsoft rolled out its latest cumulative update for Windows 10, version 21H2 and 22H2, as well as Windows 10 Enterprise LTSC 2021 and Windows 10 IoT Enterprise LTSC 2021.
The update, identified as KB5062554 (OS Builds 19044.6093 and 19045.6093), includes critical security fixes and quality improvements to enhance system stability and performance. Additionally, Microsoft issued a servicing stack update (KB5063706) to improve the reliability of the update process.
Microsoft’s released this update along with July 2025 Patch Tuesday addresses 130 vulnerabilities which Microsoft fixes 41 Remote Code Execution, 53 Elevation of Privilege, 18 Information Disclosure, 5 Denial of Service, 4 Spoofing, 1 Data Tampering vulnerability, and 8 Security Feature Bypass issues.
Key Details of the Update
This update applies to Affected Systems:
- Windows 10, version 22H2 (all editions)
- Windows 10 Enterprise LTSC 2021
- Windows 10 IoT Enterprise LTSC 2021
Security and Quality Improvements
The KB5062554 update incorporates fixes and enhancements from previous updates, including:
- June 10, 2025—KB5060533 (OS Builds 19044.5965 and 19045.5965)
- June 24, 2025—KB5061087 (OS Build 19045.6034, Preview)
Microsoft highlighted miscellaneous security improvements to internal Windows OS functionality, though no specific issues were detailed in the release notes. The update addresses vulnerabilities outlined in the July 2025 Security Updates, available on the Microsoft Security Response Center (MSRC) Security Update Guide.
Windows Secure Boot Certificate Expiration
Microsoft issued an important notice regarding Secure Boot certificates, which are set to expire starting in June 2026 for most Windows devices.
This expiration could disrupt secure booting on personal and business devices if not addressed. Microsoft recommends reviewing the guidance on Windows Secure Boot certificate expiration and CA updates and taking proactive steps to update certificates to avoid potential issues.
The update includes a servicing stack update (SSU) for OS Builds 19044.6088 and 19045.6088. The SSU enhances the reliability of the update process, mitigating potential installation issues. Microsoft now combines the latest SSU with the cumulative update (LCU) to streamline deployment.
Microsoft noted a known issue related to Noto fonts, though specific details were not provided in the release notes. Users can find more information on the Windows release health dashboard or the Windows message center.
How to Get the Update
- Windows Update: Devices connected to Windows Update will automatically download and install the update.
- Microsoft Update Catalog: Users can manually download the standalone package from the Microsoft Update Catalog.
- Windows Server Update Services (WSUS): For enterprise deployments, the update is available via WSUS.
For devices without the May 11, 2021 (KB5003173) or later LCU, the standalone August 10, 2021 SSU (KB5005260) must be installed first.
For offline OS image servicing, if the image lacks the July 25, 2023 (KB5028244) or later LCU, the standalone October 13, 2023 SSU (KB5031539) must be installed before applying this update.
Microsoft urges users to install the KB5062554 update promptly to ensure systems are protected against the latest security vulnerabilities and benefit from quality improvements.
For detailed information on the update, including vulnerability details, users can refer to the MSRC Security Update Guide or the Windows 10, version 22H2 update history page.
MSSP Pricing Guide: How to Cut Through the Noise and the Hidden Cost-> Get Your Free Guide
Source link