Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in `FileManager::detectLanguageFromTextBegining `. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As of time of publication, no known patches are available in existing versions of Notepad++.
History

Wed, 02 Oct 2024 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-08-25T20:20:20.390Z

Updated: 2024-10-02T14:50:07.295Z

Reserved: 2023-08-09T15:26:41.050Z

Link: CVE-2023-40166

cve-icon Vulnrichment

Updated: 2024-08-02T18:24:55.584Z

cve-icon NVD

Status : Modified

Published: 2023-08-25T21:15:08.777

Modified: 2024-11-21T08:18:54.703

Link: CVE-2023-40166

cve-icon Redhat

No data.