Researchers Disclose Multiple Windows Zero-Days Enabling SYSTEM Access and BitLocker Bypass

Security researcher Chaotic Eclipse has disclosed several Windows zero-day vulnerabilities, including MiniPlasma, YellowKey, and GreenPlasma, which enable SYSTEM privilege escalation and BitLocker bypasses on fully patched systems. MiniPlasma affects the Windows Cloud Files Mini Filter Driver (cldflt.sys) and can reliably grantSYSTEM-level access through a race condition, while YellowKey exploits flaws in the Windows Recovery Environment to bypass BitLocker protections using specially crafted files and USB media.GreenPlasma targets the Windows Collaborative Translation Framework (CTFMON) and allows arbitrary memory section creation that could facilitate privilege escalation and manipulation of trusted services. The disclosures add to growing concerns over unresolved Windows security flaws, particularly as researchers and security firms demonstrate practical exploitation techniques affecting modern Windows 11 and Windows Server environments.

Reference: thehackernews.com