Microsoft recently updated Windows’ “Vulnerable Driver Block List” (DriverSiPolicy.p7b) to improve security. However, this update mistakenly blocked WinFlash64.exe, a key program used by Lenovo’s BIOS update tools. As a result, many Lenovo users cannot update their firmware. Some even experience boot failures and error messages.
Microsoft Update Blocks Lenovo BIOS Tool, Causing Errors
The issue affects Windows 10 and Windows 11 users relying on Lenovo tools like Lenovo Vantage and the BIOS Update Utility. Due to Microsoft’s security update, these tools no longer function properly. Some users receive error messages such as:
- “Operation blocked: The administrator has restricted this operation.”
- “The driver cannot be loaded due to security policy.”
- “Update not installed correctly” (Lenovo Vantage).
- “Flash Error” (WINUPTP interface).
For some, the situation is worse. Their devices fail to boot after attempting a BIOS update.
Affected Windows Updates
The issue is linked to certain Windows updates. If installed, these updates may cause BIOS upgrade failures:
Windows 10 (22H2)
- KB5050081
- KB5051974
- KB5052077
Windows 11
- 22H2 / 23H2: KB5050092, KB5051989, KB5052094
- 24H2: KB5050094, KB5051987, KB5052093
Lenovo’s Fix
Lenovo has released a new BIOS update (UEFI BIOS 1.61 / ECP 1.44) to fix the issue. This update restores compatibility and allows users to update their BIOS without errors.
However, older BIOS versions remain restricted. Users must manually download and install the latest version. Lenovo advises users to check their model compatibility before updating.
What Users Should Do
If you have a Lenovo ThinkPad or another affected model, follow these steps:
- Check for BIOS Updates: Go to Lenovo’s official support page and download the latest firmware.
- Manually Install the Update: Since Windows blocks older versions, you must install the update manually.
- Keep Windows Updated: Ensure your system is up to date but be aware of updates that may cause new issues.
- Look for Workarounds: If the BIOS update fails, check Lenovo or Microsoft support for troubleshooting steps.
Potential Issues for Other Brands
This issue mainly affects Lenovo devices. However, other manufacturers may face similar problems due to Microsoft’s security policies. If you experience BIOS update failures, check for official firmware updates and follow manual installation steps.
Microsoft’s security improvements are important, but unintended consequences can disrupt essential system tools. Lenovo users should update their BIOS immediately to avoid further problems. If issues persist, contact Lenovo support for help.
Source: Giz China