45 matches found
GreatXML-PoC
GreatXML Reverse-Shell POC A self-contained Python proof-of-c...
Windows 11 Hardening Auditor for WinRE and BitLocker
This Python-based Windows security utility performs defensive auditing and mitigation tasks focused on Windows Recovery Environment WinRE and CVE-2026-45585, BitLocker protection policies, Secure Boot, TPM configuration, and boot-time execution integrity on Windows 11 systems...
YellowKey Bitlocker Bypass Mitigation
YellowKey is a zero-day physical attack vulnerability discovered in May 2026 that allows attackers with physical access to completely bypass BitLocker encryption on Windows 11 devices. This is a mitigation that modifies the Windows Recovery Environment to remove or disable the vulnerable...
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation
An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more zero-days involving a BitLocker bypass and a privilege escalation impacting Windows Collaborative Translation Framework CTFMON. The security defects have been codenamed YellowKe...
CVE-2026-20928
Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack...
EUVD-2026-22352
Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack...
CVE-2026-20928
Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack...
CVE-2026-20928 Windows Recovery Environment Security Feature Bypass Vulnerability
...
CVE-2026-20928 Windows Recovery Environment Security Feature Bypass Vulnerability
...
CVE-2026-20928
CVE-2026-20928 affects Windows Recovery Environment Agent. Root cause: improper removal of sensitive information before storage/transfer. Impact: allows bypass of a security feature with physical access; confidentiality is impacted. Affected product: Windows Recovery Environment Agent component. ...
Windows Recovery Environment Security Feature Bypass Vulnerability
Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack...
PT-2026-32718
CVE-2026-20928 Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security featur… https://t.co/pg5NOejQRf...
Microsoft Windows 安全漏洞
Microsoft Windows is an operating system used on personal devices by the American company Microsoft. The Microsoft Windows Recovery Environment Agent has a security vulnerability. Attackers can exploit this vulnerability to bypass certain features. The following products and versions are affected...
Windows update breaks USB support in recovery mode
We usually tell our faithful readers to install updates as soon as possible, but this time there’s an exception. Microsoft’s October security update has disabled USB mice and keyboards in the Windows Recovery Environment WinRE. WinRE is a special mode built into Windows that helps you fix problem...
EUVD-2021-13236
Malware in sbrugna...
EUVD-2025-2275
Malicious code in bioql PyPI...
EUVD-2021-30183
Malicious code in bioql PyPI...
The vulnerability of the recovery environment in Dell SupportAssist OS Recovery, related to the creation of temporary files with insecure permissions, allows a malicious actor to escalate their privileges.
The vulnerability of the recovery environment in Dell SupportAssist OS Recovery relates to the creation of temporary files with insecure permissions. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the recovery environment in Dell SupportAssist OS Recovery, due to insufficient protection of operational data, allows a perpetrator to disclose protected information.
The vulnerability of the recovery environment in Dell SupportAssist OS Recovery is related to insufficient protection for operational data. Exploiting this vulnerability can allow attackers to disclose protected information...
The vulnerability of the Windows operating system’s Recovery Environment Agent allows a hacker to increase their privileges.
The vulnerability of the Windows operating system’s Recovery Environment Agent is related to access control errors. Exploiting this vulnerability can allow an attacker to increase their privileges...