Main Vulnerability Database Exploits ID:12745 - Exploit for Acceptance of Extraneous Untrusted Data With Trusted Data in Windows and Windows Server - CVE-2025-48804

ID:12745 - Exploit for Acceptance of Extraneous Untrusted Data With Trusted Data in Windows and Windows Server - CVE-2025-48804

Published: May 22, 2026

Vulnerability identifier: #VU112634

Vulnerability risk: Low

CVE-ID: CVE-2025-48804

CWE-ID: CWE-349

Exploitation vector: Local access

Vulnerable software:
Windows
Windows Server

Link to public exploit:

https://github.com/garatc/BitUnlocker

Vulnerability description

The vulnerability allows a local attacker to compromise the target system.

The vulnerability exists due to acceptance of extraneous untrusted data with trusted data in BitLocker. An attacker with physical access can bypass the BitLocker Device Encryption feature on the system storage device.

Remediation

Install updates from vendor's website.

ID:12745 - Exploit for Acceptance of Extraneous Untrusted Data With Trusted Data in Windows and Windows Server - CVE-2025-48804

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human