CVE-2026-5525
6.0 MEDIUMA stack-based buffer overflow vulnerability exists in Notepad++ version 8.9.3 in the file drop handler component
Published: 2026-04-10 · Last updated: 2026-06-05
Severity and scoring
- CVSS
- 6.0 MEDIUM
- Vector
- CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
- CWE
- CWE-121
Affected products
| Vendor | Product |
|---|---|
| notepad-plus-plus | notepad\+\+ |
Description
A stack-based buffer overflow vulnerability exists in Notepad++ version 8.9.3 in the file drop handler component. When a user drags and drops a directory path of exactly 259 characters without a trailing backslash, the application appends a backslash and null terminator without proper bounds checking, resulting in a stack buffer overflow and application crash (STATUS_STACK_BUFFER_OVERRUN).
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-5525
- [Patch]https://github.com/notepad-plus-plus/notepad-plus-plus/commit/bfe7514d68bc559534c046c4ef2d1865267aa2b0
- [Vendor advisory]https://github.com/notepad-plus-plus/notepad-plus-plus/issues/17921
- [Patch]https://github.com/notepad-plus-plus/notepad-plus-plus/pull/17930
- [Vendor advisory]https://github.com/notepad-plus-plus/notepad-plus-plus/issues/17921
Related CVEs
Same CWE
- CVE-2026-10829 — A stack-based buffer overflow vulnerability has been found in the NPort W2150A-W4/W2250A-W4 Series version 1.5 and earlier
- CVE-2026-7273 — A stack-based buffer overflow vulnerability in the CGI program of Zyxel GS1900-48HPv2 firmware versions through 2.90(ABTQ.1)C0 could allo... (8.8 HIGH)
- CVE-2025-55660 — A stack overflow in the gf_opus_read_length function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of... (5.5 MEDIUM)
- CVE-2026-8356 — LibreOffice can import presentations in the legacy binary PPT format
- CVE-2026-12222 — A vulnerability was determined in Yealink SIP-T46U 108.86.0.118 (8.0 HIGH)