Spoofing Vulnerability in Windows Snipping Tool by Microsoft
CVE-2026-33829

4.3MEDIUM

Key Information:

Vendor: Microsoft
Status: Windows 10 Version 1607; Windows 10 Version 1809; Windows 10 Version 21h2; Windows 10 Version 22h2
Vendor: CVE Published:; 14 April 2026

Badges

🥇 Trended No. 1📈 Trended📈 Score: 8,410👾 Exploit Exists📰 News Worthy

What is CVE-2026-33829?

CVE-2026-33829 is a spoofing vulnerability found in Microsoft’s Windows Snipping Tool, a utility designed for capturing screenshots and enhancing user productivity. This vulnerability arises from inadequate authorization controls, allowing unauthorized actors to exploit the tool over a network. Should an attacker successfully exploit this vulnerability, they could potentially gain the ability to spoof legitimate content, thereby misleading users or system processes. This weakness could enable further unauthorized actions such as accessing sensitive information or manipulating data displayed to users, causing significant disruptions, misinformation, or data integrity issues within an organization.

Potential impact of CVE-2026-33829

Exposure of Sensitive Information: Unauthorized entities could gain access to confidential or sensitive information displayed through the Windows Snipping Tool, potentially leading to data breaches and severe privacy violations.
Misinformation and Manipulation: The ability to spoof content could allow attackers to misrepresent information communicated to users, leading to incorrect decision-making based on manipulated output, which can affect business processes and user trust.
Escalation of Attacks: This vulnerability could serve as a foothold for further attacks within an organization's network, as attackers may use it to gather intelligence or facilitate additional exploits that compromise security or system integrity.

Affected Version(s)

Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.9060

Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.8644

Windows 10 Version 21H2 32-bit Systems 10.0.19044.0 < 10.0.19044.7184

News Articles

News9live

CVE-2026-33829

Windows Snipping Tool flaw exposed: PoC exploit leaks NTLM hashes silently

A critical Windows Snipping Tool vulnerability (CVE-2026-33829) allows attackers to steal Net-NTLM hashes through malicious links. The flaw exploits improper handling of deep link URIs, triggering silent SMB authentication to attacker-controlled servers.

2 weeks ago

It Security News

CVE-2026-33829

PoC Exploit Released for Windows Snipping Tool NTLM Hash Leak Vulnerability - IT Security News

A proof-of-concept (PoC) exploit has been publicly released for a newly disclosed vulnerability in Microsoft’s Snipping Tool that allows attackers to silently steal users’ Net-NTLM credential hashes by luring them to a malicious webpage. Tracked as CVE-2026-33829, the flaw resides…Read more →

2 weeks ago

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisorypatch

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🥇
Vulnerability reached the number 1 worldwide trending spot
Apr 23, 2026
👾
Exploit known to exist
Apr 21, 2026
📰
First article discovered by It Security News
Apr 21, 2026
📈
Vulnerability started trending
Apr 20, 2026
Vulnerability published
Apr 14, 2026
Vulnerability Reserved
Mar 24, 2026

CVE-2026-33829 Data

JSON