AI description
CVE-2025-48804 is a vulnerability found in Windows BitLocker that enables an unauthorized attacker to bypass a security feature through a physical attack. This bypass occurs due to the system's acceptance of extraneous untrusted data alongside trusted data. More specifically, this vulnerability can be exploited by leveraging Windows Recovery Environment (WinRE) app trust validation. An attacker can utilize the pre-registered `SetupPlatform.exe` to gain persistent command-line access through keyboard shortcuts, thereby circumventing BitLocker's protections.
- Description
- Acceptance of extraneous untrusted data with trusted data in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
- Source
- secure@microsoft.com
- NVD status
- Analyzed
- Products
- windows_10_1507, windows_10_1607, windows_10_1809, windows_10_21h2, windows_10_22h2, windows_11_22h2, windows_11_23h2, windows_11_24h2, windows_server_2012, windows_server_2016, windows_server_2019, windows_server_2022, windows_server_2022_23h2, windows_server_2025
CVSS 3.1
- Type
- Primary
- Base score
- 6.8
- Impact score
- 5.9
- Exploitability score
- 0.9
- Vector string
- CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- MEDIUM
- secure@microsoft.com
- CWE-349
- Hype score
- Not currently trending
BitUnlocker shows BitLocker risk isn’t just the drive, it’s the boot chain. Linked to CVE-2025-48804, physical access may expose protected volumes under affected conditions. Complete KB5025885 migration and review Secure Boot trust. #CyberneticsIT #BitLocker https://t.co/iooS
@wi_Abhishek
24 Jun 2026
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ BitUnlocker Attack on Windows 11 Allows Access to Encrypted Disks in 5 Minutes Source: https://t.co/laOiRvxIbv @The_Cyber_News The attack is rooted in CVE-2025-48804, one of four critical zero-day vulnerabilities. #ICYMI https://t.co/QQVBzzoB7J
@upgradeoptions
15 May 2026
256 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ BitUnlocker Attack on Windows 11 Allows Access to Encrypted Disks in 5 Minutes Source: https://t.co/laOiRvxIbv @The_Cyber_News The attack is rooted in CVE-2025-48804, one of four critical zero-day vulnerabilities.
@upgradeoptions
14 May 2026
242 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Security Alert — BitLocker Downgrade Attack (CVE-2025-48804) The PoC is publicly available on GitHub. Audit your BitLocker configurations now. https://t.co/ztRzegmLz8
@Im_Azmir
14 May 2026
220 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
BREAKING: New BitUnlocker downgrade attack exploits CVE-2025-48804 to bypass Windows 11 BitLocker and decrypt disks with physical access in under 5 minutes. https://t.co/uJsRiqFxi1
@threatcluster
12 May 2026
206 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 #CVE-2025-48804 Exposed: How the 'BitUnlocker' Downgrade Attack Shatters #Windows 11 BitLocker Encryption in Under 5 Minutes + Video https://t.co/QxSDAjXHqg Educational Purposes!
@UndercodeUpdate
12 May 2026
169 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
microsoft dropped CVE-2025-48804. an unauth bug, CVSS high, exploit available. if you have microsoft in your stack, block external access to the affected endpoint until patched. #Microsoft #0day #CVE-2025-48804 https://t.co/0A8e5X9RX8
@trerbbb
12 May 2026
211 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
⏱️ تجاوز BitLocker في أقل من 5 دقائق CVE-2025-48804 – Downgrade Attack في يوليو 2025، فريق Microsoft STORM كشف سلسلة هجوم كاملة ضد BitLocker عبر WinRE. الفكرة: الـ Boot Manager يتحقق من WIM شرعي،
@alhaithem
8 May 2026
281 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
⏱️ Bypassing BitLocker in under 5 min CVE-2025-48804 – Downgrade Attack في يوليو 2025، فريق Microsoft STORM كشف سلسلة هجوم كاملة ضد BitLocker عبر WinRE. الفكرة: الـ Boot Manager يتحقق من WIM شرعي، لكن عند
@alhaithem
8 May 2026
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
اكتشاف طريقة لتجاوز Bitlocker في أقل من 5 دقائق باستخدام هجوم تخفيض الإصدار على CVE-2025-48804. A method has been discovered to bypass Bitlocker in under 5 minutes using a downgrade attack on CVE-2025-48804. This highlights
@fad_777
8 May 2026
256 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
Bypassing Bitlocker under 5 min using downgrade attack on CVE-2025-48804 https://t.co/Zx8vVKRuF2
@Dinosn
8 May 2026
3211 Impressions
16 Retweets
38 Likes
22 Bookmarks
0 Replies
0 Quotes
BitLockerを迂回しデータを抽出する複数のゼロデイ脆弱性BitUnlockerについて。マイクロソフト自社発見。CVE-2025-48800, CVE-2025-48003, CVE-2025-48804, CVE-2025-48818。Windows回復環境(WinRE)が悪い。7月の定例更新で修正。TPM+PIN
@__kokumoto
11 Aug 2025
2488 Impressions
18 Retweets
42 Likes
9 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "9D58CEDA-0611-4E21-87AF-C368F45BB685",
"versionEndExcluding": "10.0.10240.21073",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "1EEA1F09-0FA7-4946-8005-F0CF177B1103",
"versionEndExcluding": "10.0.10240.21073",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "3CEAC32A-5246-4F6B-8DD5-E49F3BA621DA",
"versionEndExcluding": "10.0.14393.8246",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "E0A0243D-52B4-49AE-B1AE-263640C492B0",
"versionEndExcluding": "10.0.14393.8246",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "2062C268-282B-4E52-9F8C-876A2D483EAD",
"versionEndExcluding": "10.0.17763.7558",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "00FCA704-C6E0-4DE4-86F0-80552527AE53",
"versionEndExcluding": "10.0.17763.7558",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "50848190-CF61-47F6-90B8-DB0C120749F5",
"versionEndExcluding": "10.0.19044.6093",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "01E62E99-5EDA-487C-A941-E2DA348B501F",
"versionEndExcluding": "10.0.19045.6093",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "76FEE1E8-EB22-4E01-86D7-13B35F9D2876",
"versionEndExcluding": "10.0.22621.5624",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "19D0DAB7-4BFF-4BB7-9E0E-B020CF8573C9",
"versionEndExcluding": "10.0.22631.5624",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8E866DB2-9CA7-4BCC-8591-9BC94300B779",
"versionEndExcluding": "10.0.26100.4652",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F6FA4941-0641-4EA0-99A8-97121F625380",
"versionEndExcluding": "10.0.14393.8246",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DCFD9FA0-D149-422A-975C-582C9BC9024D",
"versionEndExcluding": "10.0.17763.7558",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AE46D39E-7048-4A31-9753-39F6E5F97D1D",
"versionEndExcluding": "10.0.20348.3932",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "613302B8-D5C2-4908-9FC9-0EC1650D4517",
"versionEndExcluding": "10.0.25398.1732",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*",
"matchCriteriaId": "10E640FB-32AB-45B6-BC42-56CC587C0A35",
"versionEndExcluding": "10.0.26100.4652",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]