Microsoft has released the KB5071546 extended security update to resolve 57 security vulnerabilities, including three zero-day flaws.
If you are running Windows 10 Enterprise LTSC or are enrolled in the ESU program, you can install this update like normal by going into Settings, clicking on Windows Update, and manually performing a 'Check for Updates.'
Windows 10 KB5071546 update
Source: BleepingComputer
As this update is mandatory, it will automatically install and prompt you to restart your device when it is complete.
After installing this update, Windows 10 will be updated to build 19045.6691, and Windows 10 Enterprise LTSC 2021 will be updated to build 19044.6691.
What's new in Windows 10 KB5071546
Microsoft is no longer releasing new features for Windows 10, and the KB5071546 update contains only security updates and fixes for bugs introduced by previous security updates.
With this release, Microsoft has fixed a remote code execution zero-day vulnerability in PowerShell tracked as CVE-2025-54100 that could allow malicious scripts embedded in a webpage to be executed when the page is retrieved using the "Invoke-WebRequest" command:
[PowerShell 5.1] The Invoke-WebRequest command now includes a confirmation prompt with a security warning of a script execution risk. You can choose to continue or cancel the request. For additional details, see CVE-2025-54100 and KB5074596: PowerShell 5.1: Preventing script execution from web content.
... continue reading