CVE-2021-28316

Name of the Vulnerable Software and Affected Versions: Windows WLAN AutoConfig Service versions prior to the fixed version

Description: The issue is related to errors in security settings of the Windows WLAN service, allowing an attacker to gain unauthorized access to protected information. This security-feature bypass vulnerability affects the system. The Airstrike Attack allows for FDE bypass and EoP on domain-joined Windows workstations.

Recommendations: For Windows WLAN AutoConfig Service versions prior to the fixed version, update to the latest version to resolve the issue. As a temporary workaround, consider restricting access to the WLAN AutoConfig Service to minimize the risk of exploitation. Avoid using vulnerable configurations in the WLAN service until the issue is resolved.