bleepingcomputer[.]com/news/security/microsoft-shares-script-to-fix-winre-bitlocker-bypass-flaw/
support.microsoft[.]com/en-us/topic/kb5025175-updating-the-winre-partition-on-deployed-devices-to-address-security-vulnerabilities-in-cve-2022-41099-ba6621fa-5a9f-48f1-9ca3-e13eb56fb589
I couldn't find any hard info on how it could be or is being exploited, but apparently if someone gets their hands on your BitLocker encrypted laptop, e.g. it was lost / stolen, it's allegedly trivial to get access to your unencrypted files. The one exception is that the vulnerability cannot be exploited if the user has enabled BitLocker TPM+PIN protection. Microsoft released a fix at the end of last year, but it's a PITA & possibly a bit buggy, so now they're released a PowerShell script to make it easier.