(Updated) Take action: Mitigation guidance updated with a new script for CVE-2026-45585

🚨 The Signal: A critical BitLocker bypass vulnerability (CVE-2026-45585) in specific Windows versions has a security update available. Applying this update is crucial to prevent data exposure on affected devices.

The Impact

Windows devices using BitLocker on specific versions are at high risk of security feature bypass if not patched.

• Security Teams: Must ensure the June 2026 security update is deployed to prevent BitLocker bypass.
• IT Administrators: Responsible for deploying the security update to all affected Windows 11 and Server 2025 systems.
• Users: Devices remain vulnerable to data exposure if the required security update is not applied.

The Action

1. Review CVE-2026-45585 in the Microsoft Security Update Guide for detailed guidance.
2. Identify all Windows 11 (26H1, 25H2, 24H2) and Windows Server 2025 systems in your environment.
3. Deploy the June 2026 security update to all identified affected systems.
4. Verify successful installation of the security update across the environment.

Domain: Other · Impact: high · Workload: Other · Essential Eight: Patch Operating Systems · ISM: ISM-1407, ISM-1501, ISM-1621, ISM-1622, ISM-1623, ISM-1654, ISM-1655, ISM-1694, ISM-1695, ISM-1696, ISM-1701, ISM-1702, ISM-1877, ISM-1889, ISM-1902