Cumulative update and monthly rollup are synonymous and they also contain the security-only updates.
--please don't forget to upvote
and Accept as answer
if the reply is helpful--
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Here's when I want to get the cumulative updates for Windows Server 2016 Standard.
In the Microsoft Update Catalog, there is a column called Classification, and there are two types of cumulative updates: "Security Issue Hotfix" and "Update".
What's the difference?
For example, "KB5008207", released on December 14, 2021, was a "Security Issue Fix."
However, the modified version "KB5010195" published as out of band was "update".
If it is a cumulative update, Whether it was a "security issue fix" or a "update" that was published at that time, I think it includes both a "security issue fix" and a "update" in the past, but is it correct?
Cumulative update and monthly rollup are synonymous and they also contain the security-only updates.
--please don't forget to upvote
and Accept as answer
if the reply is helpful--
The standard terminology is detailed here.
https://learn.microsoft.com/en-us/troubleshoot/windows-client/deployment/standard-terminology-software-updates
the out-of-band are almost always emergency releases to fix some bug found in the recent security-only or monthly rollup
--please don't forget to upvote
and Accept as answer
if the reply is helpful--