Windows BitLocker Information Disclosure Vulnerability - CVE-2022-22711ID: oval:org.secpod.oval:def:81911 | Date: (C)2022-07-13 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
Windows BitLocker Information Disclosure Vulnerability. An attacker could access unencrypted parts of a BitLocker encrypted storage device if the administrator resizes the OS volume while concurrently provisioning the drive with BitLocker encryption. An attacker who successfully exploited this vulnerability could access specific parts of the storage device and could read or write to portions of the device that are unencrypted. However, this vulnerability would not allow an attacker to deny function of the storage device. Successful exploitation of this vulnerability requires an attacker to invest time in repeated exploitation attempts through sending constant or intermittent data. The type of information that could be disclosed if an attacker successfully exploited this vulnerability is raw unencrypted disk sector data.
Platform: |
Microsoft Windows 10 |
Microsoft Windows 11 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |
Microsoft Windows Server 2022 |
Microsoft Windows Server |