Ctrl + K
/ news / CVE
CVEPublished 2025-06-105 articles on news6 live referencesNVD data

CVE-2025-33073

Vulnerability data via CVEDB (Shodan)

CISA KEVKnown exploited in the wild.
CISA action: Microsoft Windows SMB Client contains an improper access control vulnerability that could allow for privilege escalation. An attacker could execute a specially crafted malicious script to coerce the victim machine to connect back to the attack system using SMB and authenticate.
CVSS v3.1
8.8
HIGH
EPSS percentile
99
Exploit Prediction Scoring System · top 1% of all CVEs
Description

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

Timeline
Published 2025-06-10

External references

NVDMITREExploit-DBSploitustrickest/cveVulnCheck

Search for exposed instances

Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).

Shodan · vuln tag0 hosts
vuln:CVE-2025-33073
Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · OS
os:"Windows 10 1507"
Hosts Shodan identified as running Windows 10 1507.
More intel sources (5)
Shodan report
vuln:CVE-2025-33073
Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2025-33073
Censys host search filtered to this CVE id.
grep.app
CVE-2025-33073
Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2025-33073
GitHub code search for direct mentions.
Google dork
"CVE-2025-33073" exploit -site:nvd.nist.gov
Write-ups and news, NVD excluded.

Known PoCs on GitHub (8)

CVE-2025-330738 repos
0xMarcio/cvePython
Latest CVEs with their Proof of Concept exploits.
★ 1,314·updated 6d ago
GhostTroops/TOPShell
TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things
★ 731·updated 1w ago
mverschu/CVE-2025-33073Python
PoC Exploit for the NTLM reflection SMB flaw.
★ 705·updated 4mo ago
depthsecurity/RelayKing-DepthPython
Dominate the domain. Relay to royalty.
★ 335·updated 2mo ago
JFR-C/Windows-Penetration-TestingC
Technical notes, AD pentest methodology, list of tools, scripts and Windows commands that are useful for internal penetration tests and assumed breach exercises (red teaming).
★ 319·updated 3w ago
OleFredrik1/remoteKrbRelayxPython
A tool for coercing and relaying Kerberos authentication over DCOM and RPC.
★ 150·updated 11mo ago
uziii2208/CVE-2025-33073Shell
Universal exploitation tool for CVE-2025-33073 targeting Windows Domain Controllers with DNSAdmins privileges and WinRM enabled.
★ 68·updated 7mo ago
Wh0am123/CVE-2025-54918-POCunknown
POC for CVE-2025-54918 and a technical demonstration.
★ 61·updated 5mo ago
Articles on news mentioning CVE-2025-33073