Microsoft has released KB5065790, an optional non-security preview update for Windows 11 version 23H2, bringing targeted reliability improvements and important SMBv1 protocol mitigation. This update, available through the Release Preview Channel, addresses specific issues that have been affecting Windows 11 users while continuing Microsoft's ongoing efforts to phase out legacy protocols for enhanced security.

What KB5065790 Delivers

This compact update focuses on two primary areas: reliability enhancements for modern authentication methods and security hardening through SMBv1 mitigation. The update builds on OS Build 22631.3374 and represents Microsoft's continued refinement of Windows 11 version 23H2 before broader deployment.

Key Reliability Fixes

The update specifically targets SIM PIN sign-in freezes that have been reported by users of Windows 11 devices with cellular connectivity. This issue affected devices attempting to authenticate using SIM-based PINs, causing system hangs during the login process. Microsoft's engineering team identified the root cause in the authentication stack and has implemented a fix that ensures smoother SIM PIN authentication.

Additionally, KB5065790 addresses multi-monitor setup reliability. Users with complex display configurations reported intermittent issues with monitor detection, resolution scaling, and display arrangement persistence. The update includes improvements to the display subsystem that enhance stability for multi-monitor environments, particularly those mixing different display technologies and resolutions.

SMBv1 Protocol Mitigation

Microsoft continues its long-standing campaign to deprecate the Server Message Block version 1 (SMBv1) protocol, which has been replaced by more secure versions SMBv2 and SMBv3. While SMBv1 was disabled by default in Windows 11, this update introduces additional mitigation measures to prevent potential re-enablement and reduce attack surface.

SMBv1 has been widely criticized by security experts due to numerous vulnerabilities, including those exploited by the WannaCry ransomware attack in 2017. The protocol lacks modern security features like encryption and more robust authentication mechanisms present in later versions.

Installation and Availability

KB5065790 is available as an optional preview update through Windows Update for devices enrolled in the Release Preview Channel. Users can manually check for updates by navigating to Settings > Windows Update and selecting "Check for updates." The update will appear as an optional install, allowing users to test the improvements before broader deployment.

For enterprise environments, the update is available through Windows Server Update Services (WSUS) and the Microsoft Update Catalog. System administrators can evaluate the update in controlled environments before rolling it out to production systems.

User Experience and Community Feedback

Early adopters in the Windows Insider Program have reported positive experiences with the update's reliability improvements. Users with cellular-enabled devices note that SIM PIN authentication now completes without the previous freezing issues, while those with multi-monitor setups report better stability when connecting and disconnecting displays.

The SMBv1 mitigation has generated discussion among IT professionals, with many welcoming the continued push toward more secure protocols. However, some administrators managing legacy systems have expressed concerns about compatibility with older equipment that only supports SMBv1, highlighting the ongoing challenge of balancing security with backward compatibility.

Microsoft's Update Strategy

This release follows Microsoft's established pattern of delivering targeted, non-security updates between monthly Patch Tuesday releases. These optional preview updates allow the company to gather real-world feedback on specific fixes before including them in mandatory security updates.

The approach demonstrates Microsoft's commitment to refining Windows 11 through incremental improvements rather than waiting for major feature updates. This strategy has been particularly effective for addressing specific reliability issues that affect subsets of users without requiring full OS upgrades.

Looking Ahead

As Windows 11 continues to evolve, Microsoft appears focused on both enhancing current functionality and strengthening security posture. The combination of reliability fixes and security hardening in KB5065790 reflects this dual approach, addressing immediate user experience issues while systematically reducing attack vectors.

Users and administrators should monitor Microsoft's official documentation for any additional guidance regarding SMBv1 dependencies in their environments. For most users, the continued phase-out of legacy protocols represents a positive step toward a more secure computing ecosystem.

Should You Install KB5065790?

For most Windows 11 users, installing this optional update is recommended, particularly if you:

  • Use cellular connectivity with SIM PIN authentication
  • Work with multiple monitor configurations
  • Want to benefit from the latest reliability improvements
  • Are comfortable testing preview updates

However, organizations with legacy systems that still require SMBv1 should conduct thorough testing before deployment to ensure business-critical operations aren't affected by the additional SMBv1 mitigation measures.

The update represents another step in Microsoft's ongoing effort to refine Windows 11 while maintaining backward compatibility where possible and improving security where necessary. As with any optional update, users should back up important data before installation and be prepared to report any issues through the Feedback Hub to help Microsoft further improve the Windows experience.