What is the CVSS score of CVE-2025-33073?

CVE-2025-33073 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 57.6%.

Which versions of Windows are affected by CVE-2025-33073?

CVE-2025-33073 is a high-severity Windows SMB privilege escalation vulnerability actively exploited in the wild that allows any compromised domain account to gain SYSTEM-level access across your…. A patch is available.

Is there a public PoC exploit available for CVE-2025-33073?

Yes, a public proof-of-concept exploit is available for CVE-2025-33073. Prioritise patching immediately. EPSS: 57.6%.

How to fix or mitigate CVE-2025-33073?

Within 24 hours: Inventory all Windows systems and identify which versions are affected; consult Microsoft security advisory for affected versions. Within 7 days: Apply vendor-released patch to all affected Windows systems, prioritizing domain controllers and systems with sensitive data access; test patch in non-production environment first. Within 30 days: Complete patch deployment across entire Windows estate; implement network segmentation to restrict SMB lateral movement where unpatched systems cannot be immediately remediated.

Windows CVE-2025-33073

EUVD-2025-17737 HIGH

Improper Access Control (CWE-284)

2025-06-10 secure@microsoft.com

Windows Information Disclosure Microsoft Windows 10 1507 Windows 10 1607 Windows 10 1809 Windows 10 21h2 Windows 10 22h2 Windows 11 22h2 Windows 11 23h2 Windows 11 24h2 Windows Server 2008 Windows Server 2012 Windows Server 2016 Windows Server 2019 Windows Server 2022 Windows Server 2022 23h2 Windows Server 2025 Suse

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Updated

Apr 16, 2026 - 06:41 EUVD-patch-fix

executive_summary

Re-analysis Queued

Apr 16, 2026 - 05:29 backfill_euvd_patch

patch_released

Patch available

Apr 16, 2026 - 05:29 EUVD

10.0.25398.1665,10.0.19044.5965,10.0.17763.7434

EUVD ID Assigned

Mar 14, 2026 - 19:49 euvd

EUVD-2025-17737

Analysis Generated

Mar 14, 2026 - 19:49 vuln.today

Added to CISA KEV

Oct 27, 2025 - 17:12 cisa

CISA KEV

PoC Detected

Oct 27, 2025 - 17:12 vuln.today

Public exploit code

CVE Published

Jun 10, 2025 - 17:23 nvd

HIGH 8.8

DescriptionNVD

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

AnalysisAI

Windows SMB contains an improper access control vulnerability (CVE-2025-33073, CVSS 8.8) enabling authenticated attackers to escalate privileges over the network. KEV-listed with EPSS 57.6% and public PoC, this vulnerability in the core Windows file sharing protocol affects every Windows system on the network, enabling lateral movement from any compromised domain account to SYSTEM-level access on SMB-accessible systems.

Technical ContextAI

SMB (Server Message Block) is the primary file and print sharing protocol in Windows networks. The access control flaw allows an authenticated user (any domain account) to escalate privileges on remote systems through the SMB protocol. Because SMB is enabled by default on all Windows systems and is the foundation of Windows domain file sharing, this vulnerability provides a powerful lateral movement technique — any compromised domain account can escalate to SYSTEM on any reachable Windows system.

RemediationAI

Apply Microsoft security update immediately across all Windows systems. This is a network-worm-capable vulnerability — patch everything. Monitor for unusual SMB authentication patterns. Consider SMB signing and encryption enforcement. Segment networks to limit SMB exposure.