Acceptance of extraneous untrusted data with trusted data in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
Weakness
The product, when processing trusted data, accepts any untrusted data that is also included with the trusted data, treating the untrusted data as if it were trusted.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Windows_10_1507 | Microsoft | * | 10.0.10240.21073 (excluding) |
| Windows_10_1607 | Microsoft | * | 10.0.14393.8246 (excluding) |
| Windows_10_1809 | Microsoft | * | 10.0.17763.7558 (excluding) |
| Windows_10_21h2 | Microsoft | * | 10.0.19044.6093 (excluding) |
| Windows_10_22h2 | Microsoft | * | 10.0.19045.6093 (excluding) |
| Windows_11_22h2 | Microsoft | * | 10.0.22621.5624 (excluding) |
| Windows_11_23h2 | Microsoft | * | 10.0.22631.5624 (excluding) |
| Windows_11_24h2 | Microsoft | * | 10.0.26100.4652 (excluding) |
| Windows_server_2012 | Microsoft | - (including) | - (including) |
| Windows_server_2012 | Microsoft | r2 (including) | r2 (including) |
| Windows_server_2016 | Microsoft | * | 10.0.14393.8246 (excluding) |
| Windows_server_2019 | Microsoft | * | 10.0.17763.7558 (excluding) |
| Windows_server_2022 | Microsoft | * | 10.0.20348.3932 (excluding) |
| Windows_server_2022_23h2 | Microsoft | * | 10.0.25398.1732 (excluding) |
| Windows_server_2025 | Microsoft | * | 10.0.26100.4652 (excluding) |
Related Attack Patterns
- https://cwe.mitre.org/data/definitions/141.html
- https://cwe.mitre.org/data/definitions/142.html
- https://cwe.mitre.org/data/definitions/75.html