Contact Us Today!

Microsoft releases script to fix WinRE BitLocker bypass flaw

Microsoft releases script to fix WinRE BitLocker bypass flaw

Microsoft has made it simpler to remedy a BitLocker bypass security flaw in the Windows Recovery Environment by releasing a script (WinRE). The BitLocker Device Encryption feature of system storage devices can be circumvented by attackers using the CVE-2022-41099 vulnerability. This PowerShell script (CVE-2022-41099) makes the process of protecting WinRE images against such attacks easier. Threat actors with physical access can access encrypted data in simple assaults by successfully exploiting this. If the user has BitLocker TPM+PIN protection activated, the vulnerability cannot be exploited, claims Microsoft.

"The sample PowerShell script was developed by the Microsoft product team to help automate the updating of WinRE images on Windows 10 and Windows 11 devices," Microsoft said in a support document published on support.microsoft.com. "Run the script with Administrator credentials in PowerShell on the affected devices. There are two scripts available—which script you should use depends on the version of Windows you are running."

PatchWinREScript 2004plus.ps1 is the recommended script version, which aids in installing security updates on computers running Windows 10 2004 and after (including Windows 11). For Windows 10 1909 and previous versions, the alternate PowerShell script (PatchWinREScript General.ps1) should be used, but it is less reliable (although it will run on all Windows 10 and Windows 11 systems).

Give us a call today!

Beringer Technology Group can help your team navigate the ever-changing cybersecurity landscape. Reach out to Beringer Technology Group today. We can help evaluate your current cybersecurity posture with our Cyber Security Risk Assessment Solution, and implement the right security solutions for your organization.

Beringer Technology Group, a leading Microsoft Gold Certified Partner specializing in Microsoft Dynamics 365 and CRM for Distribution also provides expert Managed IT ServicesBackup and Disaster RecoveryCloud Based Computing, Email Security Implementation and TrainingUnified Communication Solutions, and Cybersecurity Risk Assessment.


theProfessor

theProfessor

Rob is the CTO of Beringer Technology Group, and focuses his efforts on software development, cloud engineering, team mentoring and strategic technical direction. Rob has worked with Beringer since 2005, and has influenced every department from Development, Security, Implementation, Support and Sales. Rob graduated with his MBA from Rowan University in 2012, earned his Bachelors of Computer Science in 1997, and is current with several Microsoft technical certifications. Rob is very active, and loves to mountain bike, weight train, cook and hike with his dog pack.