Ethical Hacking News
Microsoft has released the KB5073724 extended security update for Windows 10, addressing several critical vulnerabilities and fixing issues introduced by previous updates. This update includes a fix for expiring Secure Boot certificates, as well as patches for an actively exploited elevation of privileges vulnerability in Agere modem drivers. With this release, Microsoft continues to prioritize user security, ensuring that its operating system remains a safe haven for users around the world.
MICROSOFT HAS RELEASED A SECURITY UPDATE (KB5073724) TO PATCH VULNERABILITIES IN WINDOWS OPERATING SYSTEM. The update addresses an actively exploited elevation of privileges vulnerability in Agere modem drivers. A fix is included for an expiring Secure Boot certificate, which is set to expire by June 2026. Targeted updates are being rolled out to systems that need the new certificates to maintain Secure Boot protections. The update also includes fixes for vulnerabilities in the third-party WinSqlite DLL.
Microsoft has taken another proactive step in fortifying its Windows operating system by releasing a significant security update known as KB5073724. This extended security update is designed to patch the vulnerabilities and fix the issues introduced during the January 2026 Patch Tuesday, which saw the release of three zero-day flaws and 114 total vulnerabilities.
As part of this update, Microsoft has also addressed an actively exploited elevation of privileges vulnerability in the built-in Agere modem drivers. This exploit could potentially allow threat actors to gain unauthorized access to systems that rely on these specific drivers. In order to mitigate this risk, Microsoft has removed certain modem drivers from Windows 10 KB5073724.
One of the most significant updates included in KB5073724 is a fix for an expiring Secure Boot certificate. As we previously discussed, multiple Windows Secure Boot certificates issued in 2011 are set to expire by June 2026. If these certificates are not updated, it could lead to a breakdown in Secure Boot protections, potentially allowing threat actors to bypass security measures.
Starting with this update, Microsoft is rolling out targeted updates to systems that update Secure Boot certificates. These updates will be rolled out to additional systems over time, ensuring a safe and phased deployment of the new certificates.
In addition to addressing the expiring certificate issue, KB5073724 also includes fixes for various other vulnerabilities, including those in the third-party WinSqlite DLL. This update should provide an added layer of security for Windows 10 users who rely on this component.
The updated Secure Boot certificates will be stored in a centralized location and used to validate Windows boot components, third-party bootloaders, and Secure Boot revocation updates. Microsoft has stated that there are no known issues with this update, ensuring that it can be applied without disrupting normal system operations.
As we continue to navigate the ever-evolving landscape of cybersecurity threats, Microsoft's commitment to releasing regular security updates is a testament to its dedication to protecting users' digital assets. With KB5073724, Windows 10 has taken another important step in maintaining the fortress of user security.
Related Information:
https://www.ethicalhackingnews.com/articles/Maintaining-the-Fortress-Microsoft-Unveils-Windows-10-KB5073724-Extended-Security-Update-ehn.shtml
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-kb5073724-extended-security-update/
https://support.microsoft.com/en-us/topic/january-13-2026-kb5073724-os-builds-19045-6809-and-19044-6809-bd960b49-050e-432f-a9d5-2454cb377fed
Published: Tue Jan 13 13:28:57 2026 by llama3.2 3B Q4_K_M
