CVE-2026-56968

CVE-2026-56968 affects GNU SASL versions prior to 2.2.4. The NTLM client’s short challenge in the function _gsasl_ntlm_client_step has inadequate sanitization, which can lead to memory disclosure when interacting with a crafted server. Public sources (SUSE, Debian OSV, Ubuntu/Ubuntu-related advis...

CVE-2026-50508

CVE-2026-50508 describes an exposure of sensitive information in Windows NTLM that enables an unauthenticated network-based spoofing capability. The vulnerability affects the Windows NTLM authentication path and is documented with a network attack vector and a high confidentiality impact. Public ...

PT-2026-48124

Name of the Vulnerable Software and Affected Versions Windows NTLM affected versions not specified Description Exposure of sensitive information to an unauthorized actor in Windows NTLM allows an attacker to perform spoofing over a network, which can affect the system. Recommendations At the...

EUVD-2025-34364

Exposure of sensitive information to an unauthorized actor in Windows NTLM allows an unauthorized attacker to perform spoofing locally...

PT-2025-42145

Name of the Vulnerable Software and Affected Versions Microsoft Windows affected versions not specified Description A flaw exists in Microsoft Windows related to NTLM authentication, potentially allowing an unauthorized attacker to perform spoofing locally. This issue involves the parsing of TAR...

CVE-2025-24996

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network...

Microsoft NTLM 安全漏洞

Microsoft NTLM is a Microsoft USA authentication protocol used on networks including systems running the Windows operating system as well as standalone systems. A security vulnerability exists in Microsoft NTLM. An attacker could exploit the vulnerability to perform spoofing attacks. The followin...

DEBIAN-CVE-2025-21311

Windows NTLM V1 Elevation of Privilege Vulnerability...

PT-2024-4969 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: A spoofing vulnerability affects the system, potentially allowing attackers to perform spoofing attacks due to a lack of protection of service data within the Windows NTLM authentication...

The vulnerability in the implementation of the Windows operating system’s Network Authentication Protocol NTLM allows attackers to perform spoofing attacks.

The vulnerability of the Windows operating system’s Network Authentication Protocol NTLM implementation lies in the ability to bypass authentication through spoofing attacks. Exploiting this vulnerability allows a malicious actor to carry out spoofing attacks remotely...

The vulnerability in the implementation of the NTLM protocol in Windows operating systems arises from insufficient authentication checks for NTLM packets during their processing. This allows attackers to compromise the security functions of the NTLM MIC (Message Integrity Check) mechanism.

The vulnerability in the implementation of the NTLM protocol in Windows operating systems is related to insufficient authentication checks for NTLM packets during their processing. Exploiting this vulnerability allows an attacker to compromise the security functions of the NTLM Message Integrity...

Microsoft Windows NTLM Man-in-the-Middle Information Disclosure Vulnerability

Windows Challenge/Response NTLM is used for network authentication protocols, both on systems running the Windows operating system and on standalone systems. A man-in-the-middle information disclosure vulnerability exists in Microsoft Windows NTLM. This vulnerability could be exploited by an...