Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Notepad-plus-plus Security Vulnerabilities

cve
cve

CVE-2023-6401

A vulnerability classified as problematic was found in NotePad++ up to 8.1. Affected by this vulnerability is an unknown functionality of the file dbghelp.exe. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The identifier VDB-246421 was assigned to this....

7.8CVSS

7.3AI Score

0.0004EPSS

2023-11-30 03:15 PM
36
cve
cve

CVE-2023-47452

An Untrusted search path vulnerability in notepad++ 6.5 allows local users to gain escalated privileges through the msimg32.dll file in the current working...

7.8CVSS

7.4AI Score

0.0004EPSS

2023-11-30 09:15 PM
13
cve
cve

CVE-2022-32168

Notepad++ versions 8.4.1 and before are vulnerable to DLL hijacking where an attacker can replace the vulnerable dll (UxTheme.dll) with his own dll and run arbitrary code in the context of...

7.8CVSS

7.7AI Score

0.001EPSS

2022-09-28 09:15 AM
39
4
cve
cve

CVE-2023-40166

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As....

5.5CVSS

6.2AI Score

0.001EPSS

2023-08-25 09:15 PM
125
cve
cve

CVE-2023-40164

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in nsCodingStateMachine::NextStater. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As of time.....

5.5CVSS

6.1AI Score

0.001EPSS

2023-08-25 09:15 PM
78
cve
cve

CVE-2023-40031

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer write overflow in Utf8_16_Read::convert. This issue may lead to arbitrary code execution. As of time of publication, no known patches are available in existing versions of...

7.8CVSS

8.1AI Score

0.001EPSS

2023-08-25 08:15 PM
196
cve
cve

CVE-2023-40036

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in CharDistributionAnalysis::HandleOneChar. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As...

5.5CVSS

6.1AI Score

0.001EPSS

2023-08-25 08:15 PM
79
cve
cve

CVE-2022-31902

Notepad++ v8.4.1 was discovered to contain a stack overflow via the component...

5.5CVSS

5.8AI Score

0.001EPSS

2023-02-01 02:15 AM
39
cve
cve

CVE-2022-31901

Buffer overflow in function Notepad_plus::addHotSpot in Notepad++ v8.4.3 and earlier allows attackers to crash the application via two crafted...

6.5CVSS

6.6AI Score

0.001EPSS

2023-01-19 11:15 PM
34