Detections
Analytics

CVE-2025-33073

high

Description

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

References

https://www.vicarius.io/vsociety/posts/cve-2025-33073-mitigation-script-improper-access-control-in-windows-smb-affects-microsoft-products

https://www.vicarius.io/vsociety/posts/cve-2025-33073-detection-script-improper-access-control-in-windows-smb-affects-microsoft-products

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33073

https://www.theregister.com/2025/10/21/cisa_windows_smb_bug/

https://www.databreachtoday.com/cisa-flags-highly-exploitable-windows-smb-flaw-a-29778

https://securityaffairs.com/183659/uncategorized/u-s-cisa-adds-oracle-windows-kentico-apple-flaws-to-its-known-exploited-vulnerabilities-catalog.html

https://www.cisa.gov/news-events/alerts/2025/10/20/cisa-adds-five-known-exploited-vulnerabilities-catalog

https://www.bleepingcomputer.com/news/security/cisa-high-severity-windows-smb-flaw-now-exploited-in-attacks/

https://thehackernews.com/2025/10/five-new-exploited-bugs-land-in-cisas.html

https://www.guidepointsecurity.com/blog/the-birth-and-death-of-loopyticket/

https://www.synacktiv.com/en/publications/ntlm-reflection-is-dead-long-live-ntlm-reflection-an-in-depth-analysis-of-cve-2025

https://www.databreachtoday.com/breach-roundup-critical-rce-flaw-in-roundcube-servers-a-28680

https://www.infosecurity-magazine.com/news/two-microsoft-zero-days-june-patch/

https://www.helpnetsecurity.com/2025/06/11/microsoft-fixes-zero-day-exploited-for-cyber-espionage-cve-2025-33053/

https://thehackernews.com/2025/06/microsoft-patches-67-vulnerabilities.html

https://blog.redteam-pentesting.de/2025/reflective-kerberos-relay-attack/

https://www.darkreading.com/vulnerabilities-threats/stealth-falcon-apt-exploits-microsoft-rce-zero-day-mideast

https://www.tenable.com/blog/microsofts-september-2025-patch-tuesday-addresses-80-cves-cve-2025-55234

https://www.tenable.com/blog/microsofts-june-2025-patch-tuesday-addresses-65-cves-cve-2025-33053

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-33073

Details

Source: Mitre, NVD

Published: 2025-06-10

Updated: 2025-10-21

Named Vulnerability: LoopyTicketKnown Exploited Vulnerability (KEV)

Risk Information

CVSS v2

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.36777

Vulnerability Watch

Tenable Research has classified this CVE under the following Vulnerability Watch classification, which includes active and historical (inactive) classifications. You can learn more about these classifications on our blog.

Vulnerability Being Monitored