Chaotic Eclipse disclosed two Windows zero-days, YellowKey and GreenPlasma, that can bypass BitLocker protection and elevate privileges to System on affected Windows 11 systems. Security researchers confirmed the BitLocker bypass works on recent builds, raising concerns that the proof-of-concept code could be quickly weaponized in the wild. #Windows11 #BitLocker #YellowKey #GreenPlasma #ChaoticEclipse
Keypoints
- Chaotic Eclipse publicly disclosed two Windows zero-day vulnerabilities.
- YellowKey can bypass BitLocker and expose protected data on Windows 11.
- The BitLocker bypass may also affect devices protected with a TPM PIN.
- GreenPlasma enables privilege escalation to System-level access.
- Researchers warned the PoC code could help attackers weaponize the flaws quickly.
Read More: https://www.securityweek.com/researcher-drops-yellowkey-greenplasma-windows-zero-days/