MC1081492 – (Updated) Take Action: Out-of-band update to address issue on devices running Hyper-V on some versions of Windows

Product:

Windows, Windows Server

Platform:

Online, Windows Desktop, World tenant

Status:

Change type:

Admin impact

Links:

Details:

Updated May 27, 2025: This message was updated to include additional versions of Windows affected by this issue.


Microsoft has identified an issue where certain confidential virtual machines running on Hyper-V might intermittently stop responding or restart unexpectedly, affecting service availability and requiring manual intervention. This issue primarily affects Azure confidential VMs and is not expected to impact standard in-market Hyper-V deployments, except in rare cases involving preview or pre-production configurations.


To address this issue, out-of-band (OOB) updates have been released, May 23, 2025 for Windows Server 2022 (KB5061906) and today, May 27, 2025 for additional versions of Windows affected by this issue. This update is available exclusively via the Microsoft Update Catalog. For more information and installation instructions, refer to the appropriate KB article for your Windows version. If your organization is not affected by this issue, you do not need to install this OOB update.


If you have not yet deployed the May 2025 Windows security update and your IT environment includes devices running Hyper-V on the versions of Windows listed below, we recommend you apply this OOB update instead:
Windows 11, version 24H2 (KB5061977)
Windows Server 2025 (KB5061977)
Windows Server 2022 (KB5061906)
Windows 10, version 22H2 (KB5061979)
Windows 10 Enterprise LTSC 2021 (KB5061979)
Windows 10 Enterprise LTSC 2019 and Windows Server 2019 (KB5061978)

Change Category:
XXXXXXX ... free basic plan only

Scope:
XXXXXXX ... free basic plan only

Release Phase:

Created:
2025-05-24

updated:
2025-05-28

Task Type

XXXXXXX ... free basic plan only

Docu to Check

XXXXXXX ... free basic plan only

MS Preperations

XXXXXXX ... free basic plan only

MS Urgency

XXXXXXX ... free basic plan only

MS workload name

XXXXXXX ... free basic plan only

summary for non-techies**

Microsoft has released an out-of-band update to address disruptions affecting Azure confidential virtual machines on Hyper-V, available through the Microsoft Update Catalog, and it's recommended for affected systems to ensure stability and security.

Direct effects for Operations**

Service Availability
Intermittent unresponsiveness or unexpected restarts of confidential VMs can lead to significant downtime, affecting business operations.
   - roles: System Administrator, Cloud Engineer
   - references: https://learn.microsoft.com/azure/confidential-computing/confidential-vm-overview, https://support.microsoft.com/help/5061978

User Experience
Users relying on confidential VMs may experience disruptions, leading to frustration and decreased productivity.
   - roles: End User, Business Analyst
   - references: https://support.microsoft.com/topic/4ad7e163-1b8d-4774-bb98-d376cae6ea81, https://support.microsoft.com/help/5061979

Manual Intervention Requirement
The need for manual intervention to resolve issues can lead to increased workload for IT staff and delays in service restoration.
   - roles: System Administrator, IT Support Specialist
   - references: https://support.microsoft.com/topic/80725b43-c0a1-48a4-9b82-058efffb6228, https://support.microsoft.com/topic/may-27-2025-kb5061977-os-build-26100-4066-out-of-band-a15fd6bb-313a-4a24-9e35-21dbcad2aa99

Compatibility Issues
Deploying the update without proper testing may lead to compatibility issues with existing applications or services.
   - roles: Application Developer, System Administrator
   - references: https://catalog.update.microsoft.com/, https://support.microsoft.com/help/5061978

Security Risks
Failure to apply the update may leave systems vulnerable to security threats associated with the identified issue.
   - roles: Security Analyst, System Administrator
   - references: https://learn.microsoft.com/azure/confidential-computing/confidential-vm-overview, https://support.microsoft.com/help/5061979

Configutation Options**

XXXXXXX ... paid membership only

Opportunities**

Enhanced Monitoring for Hyper-V Environments
Implementing advanced monitoring tools for Hyper-V can help in proactively identifying issues with confidential VMs before they lead to downtime. This can enhance service availability and reduce manual intervention.
   - next-steps: Research and select a monitoring solution that integrates with Hyper-V. Set up alerts for performance metrics and potential issues.
   - roles: IT Administrators, Cloud Engineers, System Architects
   - references: https://learn.microsoft.com/en-us/virtualization/hyper-v-on-windows/monitoring, https://www.datadoghq.com/blog/hyper-v-monitoring/

Automated Patch Management System
Deploying an automated patch management system can ensure that all Hyper-V environments are updated promptly with the latest OOB updates, reducing the risk of downtime due to unpatched vulnerabilities.
   - next-steps: Evaluate existing patch management solutions and consider implementing one that supports automation for Windows Server and Hyper-V environments.
   - roles: IT Administrators, DevOps Engineers, Security Officers
   - references: https://www.manageengine.com/products/patch-management/, https://www.cio.com/article/243052/how-to-implement-an-automated-patch-management-strategy.html

User Training on Hyper-V Management
Providing targeted training for users managing Hyper-V can enhance their ability to troubleshoot and respond to issues, leading to improved user experience and reduced downtime.
   - next-steps: Develop a training program focused on Hyper-V management and incident response. Schedule sessions for relevant personnel.
   - roles: IT Administrators, Support Staff, Cloud Engineers
   - references: https://www.pluralsight.com/courses/hyper-v-fundamentals, https://www.linkedin.com/learning/topics/hyper-v

Potentional Risks**

XXXXXXX ... paid membership only

IT Security**

XXXXXXX ... paid membership only

explanation for non-techies**

XXXXXXX ... free basic plan only