#NTLM
PoC Published for CVE-2026-24294: NTLM Reflection Bypass Grants SYSTEM Access on Windows Server 2025
Synacktiv has released a working PoC for CVE-2026-24294, a new NTLM reflection bypass that grants SYSTEM-level access on Windows Server 2025 by abusing the SMB-over-custom-port feature. Microsoft patched...
Critical NTLM Vulnerability in Windows
Security researchers have identified a critical vulnerability affecting all Windows Workstation and Server versions, including Windows 7, Server 2008 R2, Windows 11 (v24H2), and Server 2022. This vulnerability...