Exploitation Summary
EIP tracks 1 public exploit for CVE-2018-12038. PoCs published by gdraperi.
AI-analyzed exploit summary This PowerShell script scans remote systems to determine their BitLocker encryption method and generates a CSV report to help mitigate CVE-2018-12038. It uses the `manage-bde` command to query encryption status remotely.
Description
An issue was discovered on Samsung 840 EVO devices. Vendor-specific commands may allow access to the disk-encryption key.
Exploits (1)
nomisec
SCANNER
2 stars
by gdraperi · poc
https://github.com/gdraperi/remote-bitlocker-encryption-report
This PowerShell script scans remote systems to determine their BitLocker encryption method and generates a CSV report to help mitigate CVE-2018-12038. It uses the `manage-bde` command to query encryption status remotely.
Classification
Scanner 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
BitLocker (Windows)
Auth required
Prerequisites:
Administrative access to target systems · List of target hostnames in a text file
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (4)
Core 4
Core References
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20181112-0001/
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/395981
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/105841
Patch, Vendor Advisory x_refsource_misc
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180028
Scores
CVSS v3
4.2
EPSS
0.0585
EPSS Percentile
90.7%
Attack Vector
PHYSICAL
CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-522
Status
published
Products (1)
samsung/840_evo_firmware
Published
Nov 20, 2018
Tracked Since
Feb 18, 2026