CVE-2024-20666

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Published Jan 9, 2024

Updated: Jun 11, 2024

CWE ID 20

Summary

CVE-2024-20666 is a newly disclosed vulnerability affecting Microsoft BitLocker, a full disk encryption feature. Hackers can exploit this security flaw to bypass BitLocker's protections without requiring valid credentials or encryption keys. The vulnerability could potentially expose sensitive data stored on encrypted drives, making it a significant concern for organizations and individuals who rely on BitLocker for data security. The exact details of the exploit are not yet publicly available, but it's recommended that users update their systems as soon as patches become available to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uFf1iQ
https://www.cve.org/CVERecord?id=CVE-2024-20666
https://nvd.nist.gov/vuln/detail/CVE-2024-20666

Back to Vulnerability Database

CVE-2024-20666

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations