CVE-2026-33829

Name of the Vulnerable Software and Affected Versions Windows Snipping Tool (affected versions not specified)

Description An issue in Windows Snipping Tool allows remote attackers to capture NTLM authentication responses from users. This occurs when a victim is tricked into visiting a malicious webpage or opening a crafted link that invokes the application via the 'ms-screenclip' or 'ms-screensketch' URI schemes. This exposure of sensitive information enables an unauthorized actor to perform spoofing over a network, as the captured NTLMv2 hashes can be cracked or relayed to gain unauthorized access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.