Security researchers have identified an unpatched vulnerability in Windows Search URI handler that allows attackers to steal users' NTLMv2 password hashes. The flaw is similar to CVE-2026-33829 that affected Windows Snipping Tool, and exploits the search: URI handler to expose authentication credentials. This spoofing vulnerability poses a significant risk to enterprise environments where NTLM aut
Cybersecurity researchers have disclosed details of an unpatched issue that could be exploited to disclose a user's NTLMv2 hash to the attacker. Like in the case of CVE-2026-33829, which impacted the Windows Snipping Tool's ms-screensketch: URI handler, the newly flagged issue resides in the search: URI handler, per Huntress. CVE-2026-33829 refers to a spoofing vulnerability that could expose
Originally published at thehackernews.com
60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.
