Microsoft has started deploying the mandatory cumulative update KB5083769 for Windows 11 versions 24H2 and 25H2 as part of its April 2026 release cycle. The update not only delivers routine security patches but also introduces refinements previously limited to testing builds, improving stability in system builds 26100.8246 and 26200.8246.
The release focuses on addressing long-standing usability issues while strengthening core system security, marking a notable step toward a more reliable Windows experience.
Smart App Control Gains Flexibility
One of the most significant changes in this update involves Smart App Control. Previously, users had to perform a clean Windows installation to enable or disable this security feature. With KB5083769, that limitation has been removed.
Users can now adjust Smart App Control settings without losing their files or reinstalling the operating system. This improvement is expected to benefit those who encountered compatibility issues with legitimate applications, development tools, or games that rely on strict anti-cheat systems.
Microsoft noted that the feature rollout is gradual, meaning some users may receive access a few days after installing the update.
SFC Tool Delivers More Accurate Results
The update also addresses a persistent issue with the System File Checker tool, commonly used through the SFC /scannow command. Previously, the tool could report false positives, indicating file corruption where none existed.
With the latest patch, Microsoft has corrected this behaviour. The tool now provides more accurate diagnostics, reducing confusion for advanced users and IT professionals who rely on it for system troubleshooting.
Security and System-Level Improvements
Beyond usability fixes, KB5083769 introduces several backend security enhancements.
Secure Boot now provides clearer visibility into the status of security certificates directly within the Windows Security interface. BitLocker has also been refined, resolving issues that could trigger unnecessary recovery mode prompts.
In addition, Microsoft has implemented new protections against phishing attempts involving Remote Desktop files. These safeguards are designed to prevent malicious .rdp files from compromising systems.
For enterprise and offline environments, the company has made the update available through the Microsoft Update Catalog, supporting both x64 and Arm64 architectures.
