Windows Snipping Tool flaw can leak credentials over the network after one click

Microsoft has fixed a Windows Snipping Tool vulnerability that can expose a user’s authentication data over the network. The flaw, tracked as CVE-2026-33829, lets an attacker abuse the app’s deep-link handling so Snipping Tool reaches out to an attacker-controlled SMB server and leaks NTLM authentication material after the victim opens a crafted link. The bug […] The post Windows Snipping Tool flaw can leak credentials over the network after one click appeared first on VPN Central.