Microsoft has acknowledged a critical issue affecting Remote Desktop Protocol (RDP) security warnings following a recent update to Windows 11. Specifically, the warnings may not display correctly on some configurations, raising concerns about user protection against phishing threats.
Details of the Issue
Introduced with the Windows 11 cumulative update on April 14, 2026, known as Patch Tuesday, the issue is associated with updates KB5083769 for versions 25H2 and 24H2, and KB5083768 for version 26H1. These updates aimed to improve security by adding new RDP warnings to tackle the CVE-2026-26151 vulnerability, which has been actively exploited.
The updates were intended to provide users with detailed security prompts before initiating RDP connections, including publisher verification and remote computer details. However, users have reported problems with these dialogs, leading Microsoft to document this as a known issue by April 23, 2026.
Impact on Multi-Monitor Systems
The rendering issue primarily affects systems with multiple monitors using different display scaling settings. For example, if one display is set to 100% and another to 125%, the warning dialogs may exhibit overlapping text or hidden buttons. Such issues compromise the usability of these critical security checkpoints.
These warnings are vital for reviewing permissions before allowing access to local resources, such as printers and smart cards, through a remote machine. The problem undermines the purpose of these dialogs, which is to prevent unauthorized access through malicious RDP configurations.
Microsoft’s Response and Recommendations
Microsoft plans to address this rendering issue in a future update. In the meantime, the company advises enterprise administrators to keep a close eye on systems with mixed-DPI settings to mitigate potential risks. The updates have also disabled local resource redirection by default in pre-configured RDP files, requiring user consent for each connection.
As Microsoft works on a permanent solution, users and administrators are encouraged to stay informed on security developments and ensure their systems are configured to minimize exposure to such vulnerabilities.
For ongoing updates on cybersecurity, follow our platforms on Google News, LinkedIn, and X. Reach out to us if you have stories to share.
