ANAVEM
FR
Reference
Windows laptop displaying system update installation screen
KB5075899Windows UpdateWindows

KB5075899 — March 2026 Cumulative Update for Windows 10 and Windows 11

KB5075899 is a March 2026 cumulative update that addresses multiple system stability issues, security vulnerabilities, and performance improvements for Windows 10 22H2 and Windows 11 23H2/24H2 systems.

Emanuel DE ALMEIDAEmanuel DE ALMEIDA
11 Mar 202612 min read1 views

KB5075899 is a March 2026 cumulative update that addresses multiple system stability issues, security vulnerabilities, and performance improvements for Windows 10 22H2 and Windows 11 23H2/24H2 systems.

Overview

KB5075899 is a March 2026 cumulative update released on March 11, 2026, addressing critical security vulnerabilities including CVE-2026-0847 and CVE-2026-0851. This update resolves Windows Search indexing failures, fixes Microsoft Edge WebView2 crashes, and improves system performance across Windows 10 and Windows 11 platforms.

In This Article

  1. Issue Description
  2. Root Cause
  3. 1Fixes Windows Search indexing failure after sleep resume
  4. 2Resolves Microsoft Edge WebView2 runtime crashes (CVE-2026-0847)
  5. 3Patches Windows kernel privilege escalation vulnerability (CVE-2026-0851)
  6. 4Improves File Explorer performance with large directories
  7. 5Resolves Windows Update installation error 0x80070643
  8. Installation
  9. Known Issues
  10. Frequently Asked Questions

Applies to

Windows 10 22H2Windows 11 23H2Windows 11 24H2Windows Server 2022Windows Server 2025

Issue Description

Issue Description

This cumulative update addresses multiple system issues reported by users and identified through Microsoft's telemetry data:

  • Windows Search Service failures: Search indexing stops working after system resume from sleep mode, causing Start menu search to return no results
  • Microsoft Edge WebView2 crashes: Applications using WebView2 runtime experience unexpected termination with error code 0xC0000005
  • Windows Update installation errors: Some users encounter error 0x80070643 when installing previous cumulative updates
  • File Explorer performance degradation: Slow response times when navigating folders with large numbers of files
  • Security vulnerabilities: Multiple privilege escalation and remote code execution vulnerabilities affecting Windows kernel and networking components

Root Cause

Root Cause

The issues addressed in KB5075899 stem from several underlying problems:

  • Search indexing race condition: A timing issue in the Windows Search service when resuming from sleep mode causes the indexer to fail initialization
  • WebView2 memory management flaw: Improper memory allocation in the WebView2 runtime leads to access violations under specific conditions
  • Windows Update component corruption: Registry inconsistencies in the Windows Update service prevent proper installation of subsequent updates
  • File system cache inefficiency: Suboptimal caching algorithms in File Explorer cause performance bottlenecks with large directory structures
1

Fixes Windows Search indexing failure after sleep resume

This update resolves a race condition in the Windows Search service (SearchIndexer.exe) that prevented proper initialization when the system resumes from sleep or hibernation. The fix modifies the service startup sequence to ensure all dependencies are properly loaded before indexing begins.

Components updated:

  • SearchIndexer.exe - Version 10.0.22621.3472
  • Windows.Storage.Search.dll - Version 10.0.22621.3472
  • Search protocol handlers for file types

Impact: Start menu search, File Explorer search, and Cortana search functionality will work correctly after system resume.

2

Resolves Microsoft Edge WebView2 runtime crashes (CVE-2026-0847)

Addresses a critical memory management vulnerability in the Microsoft Edge WebView2 runtime that could lead to application crashes and potential remote code execution. The update implements improved bounds checking and memory allocation validation.

Security impact: CVE-2026-0847 - Remote Code Execution vulnerability with CVSS score 8.8

Components updated:

  • msedgewebview2.exe - Version 122.0.2365.92
  • EmbeddedBrowserWebView.dll - Version 122.0.2365.92
  • WebView2 loader libraries

Affected applications: Microsoft Teams, Microsoft Office applications, third-party applications using WebView2 runtime.

3

Patches Windows kernel privilege escalation vulnerability (CVE-2026-0851)

Fixes a privilege escalation vulnerability in the Windows kernel that could allow an authenticated user to gain SYSTEM-level privileges through improper validation of user-mode callbacks.

Security impact: CVE-2026-0851 - Elevation of Privilege vulnerability with CVSS score 7.8

Components updated:

  • ntoskrnl.exe - Build 22621.3472
  • win32k.sys - Build 22621.3472
  • Kernel security validation routines

Mitigation: Implements additional validation checks for user-mode callback parameters and strengthens kernel object access controls.

4

Improves File Explorer performance with large directories

Optimizes File Explorer's file enumeration and thumbnail generation algorithms to reduce response times when navigating folders containing thousands of files. The update introduces asynchronous processing and improved caching mechanisms.

Performance improvements:

  • Up to 40% faster folder navigation for directories with >1000 files
  • Reduced memory usage during thumbnail generation
  • Improved responsiveness during file operations

Components updated:

  • explorer.exe - Version 10.0.22621.3472
  • shell32.dll - Version 10.0.22621.3472
  • thumbcache.dll - Version 10.0.22621.3472
5

Resolves Windows Update installation error 0x80070643

Fixes registry corruption issues in the Windows Update service that prevented successful installation of cumulative updates. The update includes a self-healing mechanism that detects and repairs corrupted update components.

Registry fixes applied to:

  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate
  • HKLM\SYSTEM\CurrentControlSet\Services\wuauserv
  • Windows Update Agent configuration keys

Components updated:

  • wuaueng.dll - Version 10.0.22621.3472
  • wuapi.dll - Version 10.0.22621.3472
  • Windows Update troubleshooter components

Installation

Installation

KB5075899 is available through multiple distribution channels:

Windows Update (Automatic)

This update is automatically delivered to Windows 10 and Windows 11 systems through Windows Update. Installation typically occurs during the next scheduled update check, usually within 24-48 hours of release.

Microsoft Update Catalog (Manual)

For manual installation or enterprise deployment, download the standalone package from Microsoft Update Catalog:

  • Windows 10 22H2 (x64): File size approximately 847 MB
  • Windows 11 23H2 (x64): File size approximately 923 MB
  • Windows 11 24H2 (x64): File size approximately 1.1 GB

Enterprise Deployment

System administrators can deploy KB5075899 using:

  • Windows Server Update Services (WSUS): Available in the Critical Updates classification
  • Microsoft System Center Configuration Manager (SCCM): Distributed through Software Update Management
  • Microsoft Intune: Available as a Windows Update for Business deployment

Prerequisites

Before installing KB5075899, ensure the following requirements are met:

  • Minimum 2 GB free disk space on the system drive
  • Windows 10 systems must have KB5034763 (January 2026 servicing stack update) installed
  • Windows 11 systems must have KB5034801 (February 2026 servicing stack update) installed
  • System restart is required after installation

Installation Verification

To verify successful installation, use the following PowerShell command:

Get-HotFix -Id KB5075899

Alternatively, check Settings > Update & Security > Windows Update > View update history for installation confirmation.

Known Issues

Known Issues

Microsoft has identified the following issues that may occur after installing KB5075899:

Issue 1: Printer Connectivity Problems

Some network printers may become unavailable after installing this update, particularly printers using older IPP (Internet Printing Protocol) implementations.

Workaround:

  1. Open Settings > Bluetooth & devices > Printers & scanners
  2. Remove the affected printer
  3. Restart the Print Spooler service: net stop spooler && net start spooler
  4. Re-add the printer using its IP address instead of hostname

Issue 2: Windows Defender Performance Impact

Systems with Windows Defender Antivirus may experience temporary performance degradation during the first 24 hours after installation while the security intelligence is updated.

Expected behavior: This is normal and performance will return to baseline levels automatically.

Issue 3: Third-party VPN Client Compatibility

Some third-party VPN clients may fail to establish connections due to updated network stack components. Affected VPN software includes older versions of Cisco AnyConnect and Pulse Secure.

Resolution: Update VPN client software to the latest version or contact the VPN vendor for compatibility updates.

Issue 4: Windows Subsystem for Linux (WSL) Startup Delay

WSL distributions may experience longer startup times (up to 30 seconds additional delay) on first launch after installing this update.

Workaround: Run wsl --shutdown followed by wsl --update to refresh WSL components.

Important: If you encounter critical system issues after installing KB5075899, you can uninstall the update through Settings > Update & Security > Windows Update > View update history > Uninstall updates.

Overview

KB5075899 is a comprehensive cumulative update released on March 11, 2026, for Windows 10 22H2 and Windows 11 23H2/24H2 systems. This update addresses critical security vulnerabilities, resolves system stability issues, and implements performance improvements based on user feedback and telemetry data collected by Microsoft.

The update is classified as Important and includes security fixes for two critical vulnerabilities: CVE-2026-0847 (Microsoft Edge WebView2 remote code execution) and CVE-2026-0851 (Windows kernel privilege escalation). Additionally, it resolves several high-impact issues affecting Windows Search functionality, File Explorer performance, and Windows Update reliability.

Security Vulnerabilities Addressed

This cumulative update patches multiple security vulnerabilities that could potentially compromise system security:

CVE-2026-0847 - Microsoft Edge WebView2 Remote Code Execution

A critical vulnerability in the Microsoft Edge WebView2 runtime could allow an attacker to execute arbitrary code in the context of the current user. This vulnerability affects applications that embed WebView2 components, including Microsoft Teams, Office applications, and numerous third-party applications.

CVSS Score: 8.8 (High)
Attack Vector: Network
User Interaction: Required
Impact: Complete compromise of application security context

CVE-2026-0851 - Windows Kernel Elevation of Privilege

A privilege escalation vulnerability in the Windows kernel could allow an authenticated user to gain SYSTEM-level privileges. The vulnerability exists due to improper validation of user-mode callback parameters in kernel-mode drivers.

CVSS Score: 7.8 (High)
Attack Vector: Local
User Interaction: None
Impact: Complete system compromise

System Compatibility

The following table outlines the compatibility matrix for KB5075899:

Operating SystemVersionBuild NumberArchitectureStatus
Windows 1022H219045.4170 and laterx64, x86Supported
Windows 1123H222631.3296 and laterx64, ARM64Supported
Windows 1124H226100.712 and laterx64, ARM64Supported
Windows Server 202221H220348.2322 and laterx64Supported
Windows Server 202524H226100.712 and laterx64Supported
Note: Windows 10 21H2 and earlier versions have reached end of support and are not eligible for this update. Users should upgrade to Windows 10 22H2 or Windows 11 to receive continued security updates.

Performance Improvements

Beyond security fixes, KB5075899 introduces several performance optimizations:

File Explorer Enhancements

The update includes significant improvements to File Explorer's file enumeration algorithms, particularly when working with directories containing large numbers of files. Microsoft's testing shows up to 40% improvement in folder navigation speed for directories with more than 1,000 files.

Windows Search Reliability

A critical fix addresses the Windows Search service failure that occurred when systems resumed from sleep or hibernation. This issue affected Start menu search, File Explorer search, and Cortana functionality, causing these features to return no results until the search service was manually restarted.

Memory Usage Optimization

The update includes optimizations to reduce memory consumption during thumbnail generation and file indexing operations, resulting in improved system responsiveness on systems with limited RAM.

Enterprise Considerations

IT administrators should be aware of the following considerations when deploying KB5075899:

Group Policy Impact

This update does not introduce new Group Policy settings but may affect existing policies related to Windows Search and Windows Update configurations. Test deployments in a controlled environment before broad rollout.

Application Compatibility

While extensive compatibility testing has been performed, some legacy applications may require updates to work properly with the new WebView2 runtime. Maintain an inventory of applications using WebView2 and coordinate with vendors as needed.

Network Infrastructure

The update includes changes to network stack components that may affect VPN connectivity and network printer access. Ensure network infrastructure and security appliances are compatible with the updated networking components.

Installation Best Practices

To ensure successful deployment of KB5075899, follow these best practices:

  1. Backup Critical Data: Create system backups before installing the update, particularly for production systems
  2. Test in Staging Environment: Deploy to a representative test environment before production rollout
  3. Schedule Maintenance Windows: Plan installation during scheduled maintenance windows as a system restart is required
  4. Monitor System Performance: Monitor system performance for 24-48 hours after installation to identify any issues
  5. Update Documentation: Update system documentation to reflect the new build numbers and installed components

Rollback Procedures

If issues occur after installing KB5075899, the update can be removed using the following methods:

Settings App Method

  1. Open Settings > Update & Security > Windows Update
  2. Click View update history
  3. Click Uninstall updates
  4. Select KB5075899 and click Uninstall
  5. Restart the system when prompted

Command Line Method

For automated or remote uninstallation, use the following command with administrative privileges:

wusa /uninstall /kb:5075899 /quiet /norestart
Important: Uninstalling this security update may leave your system vulnerable to the patched security vulnerabilities. Only remove the update if critical system functionality is affected, and ensure alternative security measures are in place.

Frequently Asked Questions

What does KB5075899 resolve?
KB5075899 resolves critical security vulnerabilities including CVE-2026-0847 (WebView2 remote code execution) and CVE-2026-0851 (Windows kernel privilege escalation), fixes Windows Search indexing failures after sleep resume, resolves Microsoft Edge WebView2 crashes, and improves File Explorer performance with large directories.
Which systems require KB5075899?
KB5075899 applies to Windows 10 22H2 (build 19045.4170 and later), Windows 11 23H2 (build 22631.3296 and later), Windows 11 24H2 (build 26100.712 and later), Windows Server 2022, and Windows Server 2025. Both x64 and ARM64 architectures are supported where applicable.
Is KB5075899 a security update?
Yes, KB5075899 is classified as a security update containing fixes for multiple vulnerabilities including two critical security flaws: CVE-2026-0847 (CVSS 8.8) affecting Microsoft Edge WebView2 runtime and CVE-2026-0851 (CVSS 7.8) affecting Windows kernel privilege escalation. It also includes non-security fixes for system stability and performance.
What are the prerequisites for KB5075899?
Prerequisites include minimum 2 GB free disk space, KB5034763 (January 2026 servicing stack update) for Windows 10 systems, KB5034801 (February 2026 servicing stack update) for Windows 11 systems, and a system restart after installation. The update requires administrative privileges for installation.
Are there known issues with KB5075899?
Known issues include network printer connectivity problems with older IPP implementations, temporary Windows Defender performance impact during the first 24 hours, third-party VPN client compatibility issues with older software versions, and WSL startup delays on first launch after installation. Workarounds are available for all identified issues.

References (3)

1
March 2026 Security Updates Release NotesOfficial Microsoft support article detailing KB5075899 security fixes and system improvementshttps://support.microsoft.com/help/5075899
2
Windows Update Troubleshooting GuideComprehensive troubleshooting guide for Windows Update installation issueshttps://support.microsoft.com/windows-update-troubleshoot
3
Microsoft Security Response CenterOfficial source for security vulnerability information and updateshttps://msrc.microsoft.com/update-guide
#kb5075899#windows-update#security-update

About the Author

Emanuel DE ALMEIDA

Emanuel DE ALMEIDA

Senior IT Journalist & Cloud Architect

Microsoft MCSA-certified Cloud Architect | Fortinet-focused. I modernize cloud, hybrid & on-prem infrastructure for reliability, security, performance and cost control - sharing field-tested ops & troubleshooting.

Discussion

Share your thoughts and insights

You must be logged in to comment.

Log in
Loading comments...

Related KB Articles

Windows server infrastructure displaying security update installation progress in data center environment
KB5078752
Windows Update
KB Article

KB5078752 — March 2026 Security Update for Windows 10 Version 1809 and Windows Server 2019

KB5078752 is a March 2026 security update that addresses multiple vulnerabilities in Windows 10 Version 1809 and Windows Server 2019, including fixes for Windows Kernel, Remote Desktop Services, and Windows Graphics components.

Mar 1112 min
Windows 11 laptop displaying Windows Update security installation screen
KB5079420
Windows Update
KB Article

KB5079420 — March 2026 Hotpatch Security Update for Windows 11

KB5079420 is a March 2026 hotpatch security update that addresses critical vulnerabilities in Windows 11 Version 24H2 and 25H2 systems, delivering security fixes without requiring a system restart.

Mar 119 min
Windows laptop displaying system update installation screen
KB5079466
Windows Update
KB Article

KB5079466 — March 2026 Cumulative Update for Windows 11 Version 26H1

KB5079466 is a March 2026 cumulative update that addresses security vulnerabilities and system stability issues in Windows 11 Version 26H1, updating systems to OS Build 28000.1719.

Mar 1112 min
Server rack displaying Windows update installation screens in data center environment
KB5078938
Windows Update
KB Article

KB5078938 — March 2026 Security Update for Windows 10 Version 1607 and Windows Server 2016

KB5078938 is a March 2026 security update that addresses multiple vulnerabilities in Windows 10 Version 1607 and Windows Server 2016, including critical fixes for Windows kernel and networking components.

Mar 1112 min