Tag

Bitlocker

3 briefs RSS

CVE-2026-45585: Windows BitLocker Security Feature Bypass Vulnerability ('YellowKey')

CVE-2026-45585 is a security feature bypass vulnerability in Windows BitLocker, known as 'YellowKey', for which a public proof of concept exists, prompting Microsoft to release mitigation guidance prior to a security update.

BitLocker vulnerability security feature bypass

2r May 19, 2026

high advisory

Windows BitLocker Security Feature Bypass Vulnerability (CVE-2026-27913)

2 rules 1 TTP 1 CVE

CVE-2026-27913 describes an improper input validation vulnerability in Windows BitLocker that allows a local attacker to bypass security features.

bitlocker security-bypass windows cve-2026-27913

2r 1t 1c Apr 15, 2026

medium advisory

Azure AD Bitlocker Key Retrieval

2 rules 3 TTPs

An adversary with sufficient privileges in Azure Active Directory may attempt to retrieve BitLocker keys to decrypt drives for lateral movement or data exfiltration.

Azure Active Directory azure bitlocker key-retrieval persistence privilege-escalation

2r 3t Jan 3, 2024