THREATOPS
THREAT OPSThreat News › Unpatched NTLM Leakage in Windows search: URI Handler, Same Bug, No CVE, No Fix

Unpatched NTLM Leakage in Windows search: URI Handler, Same Bug, No CVE, No Fix

infohuntressPublished 2026-06-02

The same NTLM leakage primitive that got patched in the Snipping Tool exists in Windows Explorer's search: handler. No CVE. No fix. If your patching relies on CVE coverage, you have a blind spot.

Original source: https://www.huntress.com/blog/unpatched-ntlm-leak-windows-search-uri-handler