Skip to main content

Notepad3 CVE-2026-4744

| EUVDEUVD-2026-14702 CRITICAL
Out-of-bounds Read (CWE-125)
2026-03-24 GovTech CSG GHSA-wfh3-g987-f73h
9.3
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
9.3 CRITICAL
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:A/S:N/AU:N/R:U/V:D/RE:L/U:Amber

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:A/S:N/AU:N/R:U/V:D/RE:L/U:Amber
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
A
Scope
N

Lifecycle Timeline

4
EUVD ID Assigned
Mar 24, 2026 - 03:30 euvd
EUVD-2026-14702
Analysis Generated
Mar 24, 2026 - 03:30 vuln.today
Patch released
Mar 24, 2026 - 03:30 nvd
Patch available
CVE Published
Mar 24, 2026 - 03:26 nvd
CRITICAL 9.3

DescriptionCVE.org

Out-of-bounds Read vulnerability in rizonesoft Notepad3 (‎scintilla/oniguruma/src modules). This vulnerability is associated with program files regcomp.C‎.

This issue affects Notepad3: before 6.25.714.1.

AnalysisAI

Out-of-bounds read vulnerability in Notepad3's Oniguruma regex engine (regcomp.C) allows local attackers with user interaction to trigger memory disclosure or potential code execution with high impact on confidentiality, integrity, and availability. The vulnerability affects all versions before 6.25.714.1 and has a critical CVSS score of 9.3. A patch is available and users should update immediately.

Technical ContextAI

The vulnerability resides in the Oniguruma regular expression library (cpe:2.3:a:rizonesoft:notepad3), which is integrated into Notepad3's text processing engine via the scintilla module. The root cause is classified as CWE-125 (Out-of-Bounds Read), a memory safety issue where the regcomp.c component fails to properly validate buffer boundaries during regular expression compilation or pattern matching operations. This type of vulnerability in regex engines typically occurs when the parser processes malformed or specially crafted regex patterns without adequate length checks, allowing reads into adjacent memory regions. The scintilla editing component's reliance on Oniguruma for syntax highlighting and pattern matching makes this a direct attack surface when users open or process untrusted documents containing malicious regex patterns.

RemediationAI

Immediately upgrade Notepad3 to version 6.25.714.1 or later, which includes the patch for this out-of-bounds read vulnerability. Download the latest release from the official Notepad3 GitHub repository (https://github.com/rizonesoft/Notepad3) or through your organization's software distribution mechanism. Until patching is possible in legacy environments, users should avoid opening untrusted documents or files that may contain malicious regular expression patterns, and administrators can restrict Notepad3 usage through endpoint controls if necessary. Additionally, ensure that any automated document processing or syntax highlighting workflows that rely on Notepad3 are updated to the patched version to prevent potential information disclosure incidents.

Share

CVE-2026-4744 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy