KB5061010is the cumulative update for Windows Server 2016 and Windows Server 2016 Server Core installation. It was released on 10 June, 2025 under the ‘Patch Tuesday’ release cycle.
Salient points
- KB5061010 supersedes May 2025 cumulative update KB5058383.
- KB5061010 corresponds to build 14393.8148.
- Windows Server 2016 is impacted by two zero-day vulnerabilities.
- 36 security vulnerabilities have been reported for Windows Server 2016 in June 2025.
- 3 of these vulnerabilities have CRITICAL severity. The information about CRITICAL vulnerabilities is mentioned in the vulnerabilities section.
- The Servicing Stack Update corresponding to KB5061010 is KB5060954. This SSU was released in June 2025. For automated deployments (Windows Update and Windows Update for Business), the installation is included in the main cumulative update installation process. For manual patching, you will need to download and install the SSU KB5060954 before installing KB5061010.
Servicing Stack Update KB5060954
KB5060954 is the Servicing Stack Update (SSU) for Windows Server 2016. For automated deployments of KB5061010, KB5060954 is automatically offered for installation as part of the installation of the main cumulative update.
For manual installations of KB5061010, you would need to download and install KB5060954 before installing KB5061010.
You can download the SSU KB5060954 from the Microsoft Update Catalog page:
Installing the Servicing Stack Update would not cause the server to reboot or restart. So, you could directly proceed with the installation of the main cumulative update for Windows Server 2016.
Download KB5061010
You may download the offline installer file for KB5061010 from the catalog site link shared below:
Upon installation of KB5061010, the server would restart.
Zero-day Vulnerabilities
Two security vulnerabilities with zero-day threat levels affect Windows Server 2016 and Windows Server 2016 Server Core installation.
| CVE | Title | Severity | CVSS | Type |
| CVE-2025-33053 | Web Distributed Authoring and Versioning (WEBDAV) | Important | 8.8 | Remote Code Execution |
| CVE-2025-33073 | Windows SMB Client | Important | 8.8 | EoP |
Critical vulnerabilities
There are 36 reported security vulnerabilities in Windows Server 2016 for June 2025. The 3 CRITICAL vulnerabilities affecting Windows Server 2016 are shared below. These vulnerabilities could lead to Remote Code Execution on unpatched servers.
| CVE | Title | CVSS | Type |
| CVE-2025-33070 | Windows Netlogon | 8.1 | EoP |
| CVE-2025-33071 | Windows KDC Proxy Service (KPSSVC) | 8.1 | RCE |
| CVE-2025-32710 | Windows Remote Desktop Services | 8.1 | RCE |
Changelog – KB5061010
The following changes or improvements are part of KB5061010 for Windows Server 2016:
- [Cloud Infrastructure] Fixed: Remote Web Access (RWA) was causing remote connections to act unpredictably.
- [Windows Hello] Fixed: This update addresses an issue that prevents users from signing in with self-signed certificates when using Windows Hello for Business with the Key Trust model.
- The security update addresses security improvements in Windows Server 2016.
Rajesh Dhawan is a technology professional who loves to write about Cyber-security events and stories, Cloud computing and Microsoft technologies. He loves to break complex problems into manageable chunks of meaningful information.