Microsoft has fixed a known issue that could cause some Windows Server 2025 devices and a subset of Windows 11 systems to boot into BitLocker recovery after installing the April 2026 security update. The bug affected specific TPM and PCR7 validation configurations, and Microsoft resolved it in KB5094125 and KB5093998 while advising admins on mitigation steps for impacted deployments. #Microsoft #WindowsServer2025 #Windows11 #BitLocker #TPM #PCR7 #KB5094125 #KB5093998
Keypoints
- Microsoft fixed a BitLocker recovery issue caused by the April 2026 security update.
- The problem mainly affected Windows Server 2025 and some Windows 11 23H2 systems.
- The issue was tied to specific TPM validation and PCR7 group policy settings.
- Microsoft shipped the fix in KB5094125 and KB5093998 cumulative updates.
- Admins were advised to adjust the Group Policy or use a Known Issue Rollback if needed.