CVE-2017-0148: Microsoft SMBv1 Server Remote Code Execution Vulnerability.

Microsoft SMBv1 Server Remote Code Execution Vulnerability. The SMBv1 server in Microsoft allows remote attackers to execute arbitrary code via crafted packets.

• CISA KEV-listed (remediation due 2022-04-27)
• used in ransomware campaigns
• EPSS 94.1% (99.9% percentile)

Related briefings

• The Shadow Brokers NSA Equation Group Leak: EternalBlue, EternalRomance, DoublePulsar, and the Fuzzbunch Framework Released April 2017 2026-02-16

Browse the CVE database

Read the full analysis on IntelFusions