7.7

CVE-2026-27913

Medienbericht

Windows BitLocker Security Feature Bypass Vulnerability

Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security feature locally.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftWindows Server 2016 Version < 10.0.14393.9060
MicrosoftWindows Server 2019 Version < 10.0.17763.8644
MicrosoftWindows Server 2022 Version < 10.0.20348.5020
MicrosoftWindows Server 2022 23h2 Version < 10.0.25398.2274
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.3% 0.217
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
secure@microsoft.com 7.7 2.5 5.2
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
VulnDex Intel
Media Report
14.04.2026 19:52
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27913
Vendor Advisory