CVE-2026-33829

Name of the Vulnerable Software and Affected Versions Windows Snipping Tool (affected versions not specified)

Description An issue in Windows Snipping Tool allows remote attackers to capture NTLM authentication responses from users. NTLM (New Technology LAN Manager) is a suite of Microsoft security protocols used to authenticate users. Exploitation occurs when a user is tricked into visiting a malicious webpage or opening a crafted link that invokes the tool via the 'ms-screenclip' URI scheme, or by opening a malicious file. This exposure of sensitive information enables an unauthorized actor to perform spoofing over a network, as the captured hashes can be cracked or relayed to gain unauthorized access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.