You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
firmware updates
About this tag
Firmware updates are a recurring theme across WindowsForum.com discussions, covering security patches for industrial controllers, network gear, and Windows boot components. Topics include Secure Boot certificate rollover readiness, BitLocker suspension before BIOS or firmware updates, and critical vulnerabilities in Siemens RUGGEDCOM ROX and SCALANCE W-700 devices, as well as ZKTeco CCTV cameras and Kieback & Peter building controllers. These threads emphasize the operational importance of applying firmware updates to mitigate credential exposure, root command execution, and boot trust bypass risks. Practical guidance includes inventorying devices, testing updates in labs, and isolating legacy hardware that cannot be patched.
CVE-2026-48576 is a Microsoft-tracked Secure Boot security feature bypass vulnerability disclosed through the MSRC Security Update Guide in June 2026, affecting the pre-operating-system trust chain that Windows relies on to decide whether early boot code should be allowed to run. The important...
Organizations preparing for the Secure Boot certificate rollover that begins in June 2026 should first inventory Secure Boot status, apply OEM firmware updates where needed, test Microsoft’s certificate deployment path, and treat older hardware and virtualized systems as validation risks rather...
CISA on May 19, 2026, published an industrial control systems advisory warning that some ZKTeco CCTV cameras running SSC335-GC2063-Face-0b77 Solution firmware before V5.0.1.2.20260421 expose an unauthenticated configuration export port that can disclose camera account credentials. The advisory...
CISA published advisory ICSA-26-139-05 on May 19, 2026, warning that multiple Kieback & Peter DDC building controllers contain a cross-site scripting flaw that can let attacker-supplied JavaScript run in a victim’s browser through the controller web interface. The bug is not a cinematic “take...
Siemens and CISA disclosed on May 12 and May 14, 2026, that Siemens RUGGEDCOM ROX devices running versions before 2.17.1 contain dozens of third-party software vulnerabilities, including flaws rated as critical, and Siemens is telling operators worldwide to update affected industrial networking...
Siemens and CISA warned in mid-May 2026 that RUGGEDCOM ROX devices running versions earlier than 2.17.1 contain a critical Scheduler input-validation flaw that lets an authenticated remote attacker execute arbitrary operating-system commands as root. The advisory lands squarely in the...
Pause BitLocker Before BIOS or Firmware Updates in Windows 10/11
Difficulty: Intermediate | Time Required: 15 minutes
Updating your PC’s BIOS, UEFI firmware, TPM firmware, or certain device firmware can improve stability, security, and hardware compatibility. But if BitLocker is protecting your...
Siemens has issued a significant security advisory for its SCALANCE W-700 IEEE 802.11n wireless access point family, warning that multiple vulnerabilities affect a long list of devices running versions earlier than 6.6.0. The advisory covers models spanning RJ45, M12, SFP, and EEC variants, and...
Microsoft’s March 26, 2026 Safe OS Dynamic Update for Windows 11 version 26H1, tracked as KB5081151, lands at a moment when a much bigger platform transition is coming into view: the June 2026 Secure Boot certificate expiration. In practical terms, this is not just another maintenance package...
agent 365 governance
anthropic claude integration
certificate expiration
copilot cowork
device security
dynamic updates
endpoint management
firmwareupdates
it fleet management
it security updates
it update planning
kb5081151
kb5081494
kb5083990
microsoft 365
microsoft account
oobe setup
privacy and trust
safe os dynamic update
secure boot
secure boot certificates
uefi certificates
windows 10 esu
windows 11
windows 11 24h2
windows 11 26h1
windows security
windows security app
windows update
winre
WAGO’s industrial managed switches are facing a serious security problem that reads like a classic OT nightmare: an unauthenticated remote attacker may be able to abuse a hidden function in the CLI prompt, break out of the restricted interface, and potentially gain full device compromise. The...
The latest CISA advisory on Pharos Controls’ Mosaic Show Controller is a reminder that even niche show-control platforms can present critical attack paths when authentication is missing from core functions. CISA says Mosaic Show Controller firmware 2.15.3 is affected by CVE-2026-2417, a missing...
Microsoft quietly pushed a firmware update for the Surface Pro (11th Edition) this month that specifically targets a cluster of persistent inking, touchscreen, and Slim Pen 2 behaviors that have frustrated some early owners — and it arrives with the kind of mixed blessing firmware fixes always...
Microsoft has quietly shipped a firmware and driver package that finally stops some Surface Pro 11 for Business units from “inking while hovering,” fixes several pressure‑sensitivity regressions with the Surface Slim Pen 2, and addresses multiple touchscreen reliability problems that left owners...
Microsoft has quietly pushed a new set of firmware and driver packages for the Surface Pro (11th Edition) that target a cluster of long‑running input and media problems — most notably a suite of touchscreen and pen‑related fixes that aim to restore accurate touch, reliable pen inking, and...
Microsoft has quietly sounded an operational alarm: the long‑lived Secure Boot certificates that have anchored Windows’ pre‑boot trust since about 2011 begin expiring in mid‑2026, and while Microsoft and many OEMs are delivering updated certificates automatically through Windows servicing, a...
Siemens ProductCERT has confirmed an improper access control vulnerability in Heliox-branded EV charging hardware that can let an attacker reach otherwise protected services by using the charging cable as an attack vector — Siemens has published fixes and recommends updating affected chargers to...
Microsoft has quietly accelerated a platform-level Secure Boot certificate refresh for Windows 11 — one that replaces long‑lived Microsoft UEFI certificates issued around 2011 with a new 2023 certificate family so devices remain able to trust and receive pre‑boot security updates after those...
Microsoft quietly refreshed and republished detailed Secure Boot FAQ content this winter, restoring step‑by‑step guidance and timeline clarity as the industry races toward the mid‑2026 expiration of several long‑running UEFI signing certificates. The updated FAQ and related Microsoft posts make...
Microsoft has issued a platform-level warning: the Secure Boot certificates first issued around 2011 that underpin Windows’ pre-boot trust model begin expiring in June 2026, and although most updated systems will continue to boot, devices that do not receive the replacement certificate family...
certificate updates
enterprise it
firmwareupdates
it administration
kek update
oem firmware
oobe 2026
oobe updates
safe os update
secure boot
uefi
uefi certificates
windows 10 esu
windows 11
windows 11 26h1
windows security
windows update
Pelco’s Sarix Professional 3 Series cameras have a serious authentication-bypass weakness that, according to the advisory published this week, allows unauthenticated access to functionality normally gated behind the device’s web-management interface — including the ability to view live video...