Two Unpatched Windows Exploits Target BitLocker, SYSTEM Access

Microsoft’s May Patch Tuesday did not address two serious Windows vulnerabilities disclosed by researcher Chaotic Eclipse: YellowKey can bypass BitLocker by inserting a specially crafted USB while in the Windows Recovery Environment to gain a privileged shell and access decrypted volumes, and GreenPlasma is a local privilege escalation via CTFMON.exe shared-memory misuse that can allow a standard user to achieve SYSTEM privileges; PoC details were published, fixes are not yet available, and mitigations cited include enabling a BootLoader PIN and standard endpoint protections.