CVSS 6.8 understates the risk: in laptop-theft scenarios, BitLocker is often the only thing between data-at-rest and a stranger holding the device. Public disclosure preceded the mitigation by a week.
← Findings
"YellowKey" BitLocker bypass mitigated
CVSS 6.8 understates the risk: in laptop-theft scenarios, BitLocker is often the only thing between data-at-rest and a stranger holding the device.