Main Vulnerability Database Vulnerabilities #VU69152

Security features bypass in Windows - CVE-2022-41099

Published: November 9, 2022

Vulnerability identifier: #VU69152

CSH Severity: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2022-41099

CWE-ID: CWE-254

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Windows

Software vendor:
Microsoft

Description

The vulnerability allows a local attacker to compromise the target system.

The vulnerability exists due to security features bypass in BitLocker. An attacker with physical access can gain access to encrypted data.

Install updates from vendor's website.