push button decrypt: mention exploitable major windows versions now Nickel is known to work

2026-05-26 09:10:48 +00:00 · 2023-08-18 11:45:44 +01:00 · 2023-08-18 11:45:44 +01:00 · 9e9182b923
commit 9e9182b923
parent 9e8472bf6b
1 changed files with 2 additions and 0 deletions
--- a/readme.md
+++ b/readme.md
@ -90,3 +90,5 @@ At this point, the on-disk BitLocker metadata will contain a plaintext VMK.
 Dump it, and use that VMK to decrypt the FVEK.  
 The decrypted FVEK can be used on the disk image made previously to decrypt the partition.

+Please note: I only successfully exploited this issue on Windows 10 in very specific circumstances (TPM-only BitLocker with no recovery key).
+  However, [others have successfully exploited this issue using a vulnerable WinRE on Windows 11 (Nickel)](https://blog.scrt.ch/2023/08/14/cve-2022-41099-analysis-of-a-bitlocker-drive-encryption-bypass/).