Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

SMB

Unpatched Windows Search URI flaw could leak NTLMv2 hashes

Research, Risk, Vulnerabilities

June 4, 2026

Researchers said an unpatched Windows search: URI flaw could leak NTLMv2 hashes through a crafted link. Microsoft did not fix the issue after disclosure in April 2026, and the report advised SMB and NTLM mitigations.
CISA says Windows SMB privilege-escalation bug CVE-2025-33073 is being exploited

Cybercrime, News, Policy, Risk, Vulnerabilities

October 21, 2025

CISA warned that threat actors are actively exploiting CVE-2025-33073, a high-severity SMB privilege-escalation bug affecting Windows Server, Windows 10 and Windows 11 up to 24H2. Microsoft patched the flaw in June 2025 and attributed discovery to multiple researchers, while CISA added the vulnerability to its Known Exploited Vulnerabilities Catalog and set a Nov. 10 deadline…

About
Editorial Policy
Privacy
Contact