Alon_Leviev

Researcher fromMicrosoft Offensive Research & Security Engineering (MORSE)
#7528of 53,632
36.5Total CVSS
Vulnerabilities · 5
High
5
PT-2026-32775
7.7
2026-04-14
Microsoft · Bitlocker · CVE-2026-27913
**Name of the Vulnerable Software and Affected Versions** Windows BitLocker (affected versions not specified) **Description** Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security feature, specifically Secure Boot, locally. This issue poses a risk to data integrity and confidentiality, particularly within enterprise device security architectures. **Recommendations** Apply the April 2026 security updates.
PT-2025-28532
7.2
2025-07-08
Microsoft · Windows Bitlocker · CVE-2025-48003
Name of the Vulnerable Software and Affected Versions: Windows BitLocker (affected versions not specified) Description: A protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack. This issue enables attackers to access encrypted data. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-28534
7.2
2025-07-08
Microsoft · Windows Bitlocker · CVE-2025-48800
Name of the Vulnerable Software and Affected Versions: Windows BitLocker (affected versions not specified) Description: A protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-28537
7.2
2025-07-08
Microsoft · Windows Bitlocker · CVE-2025-48804
**Name of the Vulnerable Software and Affected Versions** Windows BitLocker (affected versions not specified) **Description** An issue exists where the acceptance of extraneous untrusted data alongside trusted data allows an unauthorized attacker to bypass a security feature. This exploit requires physical access to the system and can be achieved through a downgrade attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-28549
7.2
2025-07-08
Microsoft · Windows Bitlocker · CVE-2025-48818
Name of the Vulnerable Software and Affected Versions: Windows BitLocker (affected versions not specified) Description: A time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack. This issue raises concerns about the safety of encrypted data. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.