CONTACT US
Twitter Linkedin Youtube
Patch Review Recommendations

Flexis March 2026 Patch Recommendation

Patches Microsoft released in March 2026

 

  • KB5078766: – 2026-03 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems  
  • KB5078752: – 2026-03 Cumulative Update for Windows Server 2019 (1809) for x64-based systems (  
  • KB5078938: 2026-03 Cumulative Update for Windows Server 2016 for x64-based Systems 

Get Help With Patching, Talk to a Patching Expert.

Impacted Products:

Microsoft-Windows

Microsoft Windows

Microsoft-Edge

Microsoft Edge

(HTML-based)

Microsoft-Edge

Microsoft Edge

 (Chromium-based)

Internet-Explorer

Internet Explorer

Microsoft-Office

Microsoft Office and Microsoft Office Services and Web Apps

Windows-Defenser

Windows Defender

Visual-Studio

Visual Studio

6

ASP.NET Core

Untitled design (1)

Chakra Core

Microsoft-Dynamics

Microsoft Dynamics

NET-Framework

.NET Framework

NET-Core

.NET Core

Please note the following information regarding the security updates:

Windows 10 Enterprise and Education and Windows 10 Home and Pro Lifecycle pages, Windows 10 was ended on October 14, 2025. The current version, 22H2, will be the final version of Windows 10. The following editions will remain in support with monthly security update releases through that date: 

Home

Pro

Pro Education

Pro for Workstations

Education

Enterprise

Enterprise multi-session

KB5078766: Windows Server 2022

Link to Microsoft Support

Improvements 

This security update contains fixes and quality improvements from KB5075906 (released February 10, 2026) and KB5082314​​​​​​​ (released March 2, 2026). The following summary outlines key issues addressed by this update. Also, included are available new features. The bold text within the brackets indicates the item or area of the change. 

  • [Secure Boot] With this update, Windows quality updates include additional high confidence device targeting data, increasing coverage of devices eligible to automatically receive new Secure Boot certificates. This targeting is based primarily on client device diagnostic data; due to limited data, servers are unlikely to qualify, though not explicitly excluded. Devices receive new certificates only after demonstrating sufficient successful update signals, maintaining a controlled and phased rollout. 
  • [Windows System Image Manager​​​​​​​] Improved: This update improves the reliability of choosing trusted catalog files. It adds a warning dialog that helps you confirm that the file you select comes from a trusted source. 

 

 

Known issues in this update 

 

After installing KB5070884 or later updates, Windows Server Update Services (WSUS) does not display synchronization error details within its error reporting. This functionality is temporarily removed to address the Remote Code Execution Vulnerability, CVE-2025-59287.  

KB5078752: Windows Server 2019 Win 10 Ent LTSC 2019

Link to Microsoft Support

Applies to: Windows Server 2019 

This security update includes fixes and quality improvements that are part of the following update: 

The following is a summary of the issues that this update addresses when you install this update. The bold text within the brackets indicates the item or area of the change we are documenting. 

  • [Windows System Image Manager] This update adds a warning dialog to help users confirm that the selected catalog file comes from a trusted source. 
  • [File History] Improved: File History in Control Panel when backing up files. New files with names containing some Chinese and Private Use Area characters can now be backed up. 
  • [Secure Boot] With this update, Windows quality updates include additional high confidence device targeting data, increasing coverage of devices eligible to automatically receive new Secure Boot certificates. This targeting is based primarily on client device diagnostic data; due to limited data, servers are unlikely to qualify, though not explicitly excluded. Devices receive new certificates only after demonstrating sufficient successful update signals, maintaining a controlled and phased rollout 

 

 

Applies to: Windows 10 Enterprise LTSC 2019 

This security update includes fixes and quality improvements that are part of the following update: 

The following is a summary of the issues that this update addresses when you install this update. The bold text within the brackets indicates the item or area of the change we are documenting. 

  • [Windows System Image Manager] This update adds a warning dialog to help users confirm that the selected catalog file comes from a trusted source. 
  • [File History] Improved: File History in Control Panel when backing up files. New files with names containing some Chinese and Private Use Area characters can now be backed up. 
  • [Secure Boot] With this update, Windows quality updates include additional high confidence device targeting data, increasing coverage of devices eligible to automatically receive new Secure Boot certificates. This targeting is based primarily on client device diagnostic data; due to limited data, servers are unlikely to qualify, though not explicitly excluded. Devices receive new certificates only after demonstrating sufficient successful update signals, maintaining a controlled and phased rollout. 

 

 

Known issues in this update 

Symptoms 

After installing this update released on or after January 13, 2026, Japanese language installations of Windows Server 2019 might not correctly display Japanese characters in the PowerShell console. 

This issue is caused by an unintended change to PowerShell encoding settings, which are incorrectly set to UTF-8 following the installation of the update. English language text can appear correctly, and commands can be entered as usual. However, Japanese output text appears garbled, or with the appearance of question marks where Japanese text is intended to be shown. Japanese text which is entered into PowerShell will also be affected in the same way. 

Workaround 

There are two methods to address this issue: 

Method 1: Start PowerShell from a Command Prompt 

  1. Open the Command Prompt (cmd.exe) console. To do this, you can click Start, type cmd in the Search box, and then select cmd from the results. 
  2. In the Command Prompt window, type powershell.exe and then press Enter. This opens a PowerShell console where this issue does not occur. 

Method 2: Change the font in the PowerShell console 

  1. Start PowerShell as usual. To do this, you can click Start, type powershell in the Search box, and then select powershell from the results. 
  2. Right-click the top bar of the PowerShell console, select Properties, and then select the Font tab. Here, select MS Gothic, and then click OK. 

KB5078938: Windows Server 2016, all editions Win 10 Ent LTSB 2016

Link to Microsoft Support

Windows Secure Boot certificate expiration  

Important: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. This might affect the ability of certain personal and business devices to boot securely if not updated in time. To avoid disruption, we recommend reviewing the guidance and taking action to update certificates in advance.   

For details and preparation steps for Windows devices, see Windows Secure Boot certificate expiration and CA updates. 

For details and preparation steps for Windows servers, see the following resources: 

 

Applies to: Windows Server 2016 

 

This security update includes fixes and improvements that are a part of the following update: 

The following is a summary of the issues that this update addresses. The bold text within the brackets indicates the item or area of the change we are documenting. 

  • [Windows System Image Manager] This update adds a warning dialog to help users confirm that the selected catalog file comes from a trusted source. 
  • [Secure Boot] With this update, Windows quality updates include additional high confidence device targeting data, increasing coverage of devices eligible to automatically receive new Secure Boot certificates. This targeting is based primarily on client device diagnostic data; due to limited data, servers are unlikely to qualify, though not explicitly excluded. Devices receive new certificates only after demonstrating sufficient successful update signals, maintaining a controlled and phased rollout. 

 

Applies to: Windows 10 Enterprise LTSB 2016 and Windows 10 IoT Enterprise 2016 LTSB 

 

This security update includes fixes and improvements that are a part of the following update: 

The following is a summary of the issues that this update addresses. The bold text within the brackets indicates the item or area of the change we are documenting. 

  • [Windows System Image Manager] This update adds a warning dialog to help users confirm that the selected catalog file comes from a trusted source. 
  • [Secure Boot] With this update, Windows quality updates include additional high confidence device targeting data, increasing coverage of devices eligible to automatically receive new Secure Boot certificates. This targeting is based primarily on client device diagnostic data; due to limited data, servers are unlikely to qualify, though not explicitly excluded. Devices receive new certificates only after demonstrating sufficient successful update signals, maintaining a controlled and phased rollout. 
  • 408-940-3235
  • 2005 De La Cruz Blvd Suite 128, Santa Clara, California, 95050

About us

NOC Services

SOC Services

Help Desk