CVE-2026-20841

Overview

Microsoft
Windows Notepad

10 Feb 2026

Published

12 Feb 2026

Updated

CVSS v3.1

HIGH (7.8)

EPSS

0.10%

MITRE

KEV

Description

Improper neutralization of special elements used in a command ('command injection') in Windows Notepad App allows an unauthorized attacker to execute code locally.

Statistics

8 Posts
2 Interactions

Last activity: 2 hours ago

Fediverse

arudesalad @arudesalad

Literally

(CVE)

1
0
0
13h ago

Bluesky

Undercode Testing @undercode.bsky.social

Notepad++ Just Became a Hacker’s Best Friend: CVE-2026-20841 Exposes Millions – Patch Now! + Video Introduction: The humble text editor has evolved into a complex rendering engine, and with that evolution comes a critical flaw. Microsoft’s emergency patch for CVE-2026-20841 confirms that Notepad’s…

0
1
0
17h ago

r/netsec bot @r-netsec.bsky.social

Microsoft's Notepad Got Pwned (CVE-2026-20841)

0
0
0
21h ago

Help Net Security @helpnetsecurity.com

Windows Notepad Markdown feature opens door to RCE (CVE-2026-20841) 📖 Read more: www.helpnetsecurity.com/2026/02/12/w... #cybersecurity #cybersecuritynews #Windows #PoC #socialengineering @microsoft.com

0
0
0
15h ago

キタきつね @kitafox.bsky.social

Windows のメモ帳の Markdown 機能が RCE の扉を開く (CVE-2026-20841) Windows Notepad Markdown feature opens door to RCE (CVE-2026-20841) #HelpNetSecurity (Feb 12) www.helpnetsecurity.com/2026/02/12/w...

0
0
0
8h ago

topickapp (IT技術系ニュースサイト) @topickapp.bsky.social

https://pc.watch.impress.co.jp/docs/news/2085270.html Windowsのメモ帳にリモートコード実行の脆弱性「CVE-2026-20841」が判明。悪意あるマークダウンファイルを開かせ、リンクをクリックさせることでリモートファイルを読み込み実行可能です。 2月10日の月例セキュリティ更新プログラムで修正済みのストアアプリ版メモ帳が対象。

0
0
0
6h ago

今日視界 @g0rosato.bsky.social

【已復現】Microsoft Windows 記事本遠程代碼執行漏洞(CVE-2026-20841)

0
0
0
5h ago

ohhara @shiojiri.com

Windows11のメモ帳に脆弱性。しかもリモートコード実行のヤバイやつ。原因はマークダウン | ニッチなPCゲーマーの環境構築Z https://www.nichepcgamer.com/archives/windows11-notepad-vulnerability-cve-2026-20841.html

0
0
0
2h ago

CVE-2026-20700

Overview

Apple
macOS

11 Feb 2026

Published

13 Feb 2026

Updated

CVSS

Pending

EPSS

0.01%

MITRE

KEV

Description

A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 26.3, tvOS 26.3, macOS Tahoe 26.3, visionOS 26.3, iOS 26.3 and iPadOS 26.3. An attacker with memory write capability may be able to execute arbitrary code. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-14174 and CVE-2025-43529 were also issued in response to this report.

Statistics

11 Posts
4 Interactions

Last activity: 4 hours ago

Fediverse

Christoph Schmees @PC_Fluesterer

Apple aktualisiert alles 2026-02

Apples reguläre Updates im Februar flicken 71 Sicherheitslücken. Einige von denen stecken in mehreren von Apple Produkten. Bemerkenswert ist CVE-2026-20700, die bereits für Angriffe ausgenutzt wird (Zero-Day). Weitere drei neue Sicherheitslücken betreffen die Spracherkennung (Siri), ermöglichen sie doch, auch einem gesperrten iPhone persönliche Daten zu entloc

https://www.pc-fluesterer.info/wordpress/taxopress_logs/apple-aktualisiert-alles-2026-02/

0
0
1
20h ago

Jeff Hall - PCIGuru :verified: @jbhall56

The vulnerability, tracked as CVE-2026-20700 (CVSS score: N/A), has been described as a memory corruption issue in dyld, Apple's Dynamic Link Editor. https://thehackernews.com/2026/02/apple-fixes-exploited-zero-day.html

0
0
1
18h ago

Christopher Horrell @chorrell

Update your iPhones to iOS 26.3, CVE-2026-20700 is pretty bad!

https://go.theregister.com/feed/www.theregister.com/2026/02/12/apple_ios_263/

0
0
0
16h ago

Dark Web Informer :verified_paw: @DarkWebInformer

‼️ CISA has added 3 vulnerabilities to the KEV Catalog

CVE-2025-15556: Notepad++ Download of Code Without Integrity Check Vulnerability: Notepad++ when using the WinGUp updater, contains a download of code without integrity check vulnerability that could allow an attacker to intercept or redirect update traffic to download and execute an attacker-controlled installer. This could lead to arbitrary code execution with the privileges of the user.

CVE-2026-20700: Apple Multiple Buffer Overflow Vulnerability: Apple iOS, macOS, tvOS, watchOS, and visionOS contain an improper restriction of operations within the bounds of a memory buffer vulnerability that could allow an attacker with memory write the capability to execute arbitrary code.

CVE-2024-43468: Microsoft Configuration Manager SQL Injection Vulnerability: Microsoft Configuration Manager contains an SQL injection vulnerability. An unauthenticated attacker could exploit this vulnerability by sending specially crafted requests to the target environment which are processed in an unsafe manner enabling the attacker to execute commands on the server and/or underlying database.

2
2
0
12h ago

Bluesky

CrowdCyber @crowdcyber.bsky.social

Apple Zero-Day (CVE-2026-20700) Exploited in the Wild

0
0
0
22h ago

Help Net Security @helpnetsecurity.com

Apple fixes zero-day flaw exploited in targeted attacks (CVE-2026-20700) 📖 Read more: www.helpnetsecurity.com/2026/02/12/a... #cybersecurity #cybersecuritynews #0day #iOS #macOS #iPad

0
0
0
19h ago

キタきつね @kitafox.bsky.social

Apple、標的型攻撃で悪用されるゼロデイ脆弱性（CVE-2026-20700）を修正 Apple fixes zero-day flaw exploited in targeted attacks (CVE-2026-20700) #HelpNetSecurity (Feb 12) www.helpnetsecurity.com/2026/02/12/a...

0
0
0
8h ago

セキュリティ対策Lab @securitylab-jp.bsky.social

Apple、iOS 26.3／iPadOS 26.3で複数の脆弱性を修正（CVE-2026-20700）、高度に標的化されたサイバー攻撃での悪用の可能性 rocket-boys.co.jp/security-mea... #セキュリティ対策Lab #セキュリティ #Security #CybersecurityNews

0
0
0
6h ago

ohhara @shiojiri.com

CVE-2024-43468 Microsoft Configuration Manager SQL Injection Vulnerability CVE-2025-15556 Notepad++ Download of Code Without Integrity Check Vulnerability CVE-2025-40536 SolarWinds Web Help Desk Security Control Bypass Vulnerability CVE-2026-20700 Apple Multiple Buffer Overflow Vulnerability

0
0
0
4h ago

CVE-2026-25646

Overview

pnggroup
libpng

10 Feb 2026

Published

11 Feb 2026

Updated

CVSS v4.0

HIGH (8.3)

EPSS

0.04%

MITRE

KEV

Description

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. Prior to 1.6.55, an out-of-bounds read vulnerability exists in the png_set_quantize() API function. When the function is called with no histogram and the number of colors in the palette is more than twice the maximum supported by the user's display, certain palettes will cause the function to enter into an infinite loop that reads past the end of an internal heap-allocated buffer. The images that trigger this vulnerability are valid per the PNG specification. This vulnerability is fixed in 1.6.55.

Statistics

2 Posts
4 Interactions

Last activity: 21 hours ago

Fediverse

buherator @buherator

libpng CVE-2026-25646: Heap buffer overflow in `png_set_quantize`

https://github.com/pnggroup/libpng/security/advisories/GHSA-g8hp-mq4h-rqm3

2
2
0
21h ago

Bluesky

buherator @buherator.bsky.social

libpng CVE-2026-25646: Heap buffer overflow in `png_set_quantize` github.com -> Original->

0
0
0
21h ago

CVE-2025-9142

Overview

checkpoint
Hramony SASE

14 Jan 2026

Published

14 Jan 2026

Updated

CVSS v3.1

HIGH (7.5)

EPSS

0.01%

MITRE

KEV

Description

A local user can trigger Harmony SASE Windows client to write or delete files outside the intended certificate working directory.

Statistics

2 Posts

Last activity: 22 hours ago

Fediverse

buherator @buherator

Check Point Harmony Local Privilege Escalation (CVE-2025-9142)

https://blog.amberwolf.com/blog/2026/january/advisory---check-point-harmony-local-privilege-escalation-cve-2025-9142/

/via @badsectorlabs

0
0
0
22h ago

Bluesky

buherator @buherator.bsky.social

Check Point Harmony Local Privilege Escalation (CVE-2025-9142) blog.amberwolf.com -> /via @badsectorlabs Original->

0
0
0
22h ago

CVE-2026-0969

Overview

HashiCorp
Shared library

12 Feb 2026

Published

12 Feb 2026

Updated

CVSS v3.1

HIGH (8.8)

EPSS

0.07%

MITRE

KEV

Description

The serialize function used to compile MDX in next-mdx-remote is vulnerable to arbitrary code execution due to insufficient sanitization of MDX content. This vulnerability, CVE-2026-0969, is fixed in next-mdx-remote 6.0.0.

Statistics

2 Posts

Last activity: 9 hours ago

Fediverse

Socket @SocketSecurity

Update: We’ve published free Socket Certified Patches for the next-mdx-remote RCE vulnerability (CVE-2026-0969).
No dependency upgrade required, and you don’t have to be a Socket customer to use them.

Details: https://socket.dev/blog/high-severity-rce-vulnerability-disclosed-in-next-mdx-remote
#NextJS

0
0
0
9h ago

Bluesky

piggo @pigondrugs.bsky.social

~Socket~ High-severity RCE (CVE-2026-0969) in next-mdx-remote < 6.0.0 allows code execution when rendering untrusted server-side MDX content. - IOCs: CVE-2026-0969 - #CVE20260969 #RCE #ThreatIntel

0
0
0
10h ago

CVE-2025-49144

Overview

notepad-plus-plus
notepad-plus-plus

23 Jun 2025

Published

24 Dec 2025

Updated

CVSS v3.1

HIGH (7.3)

EPSS

0.01%

MITRE

KEV

Description

Notepad++ is a free and open-source source code editor. In versions 8.8.1 and prior, a privilege escalation vulnerability exists in the Notepad++ v8.8.1 installer that allows unprivileged users to gain SYSTEM-level privileges through insecure executable search paths. An attacker could use social engineering or clickjacking to trick users into downloading both the legitimate installer and a malicious executable to the same directory (typically Downloads folder - which is known as Vulnerable directory). Upon running the installer, the attack executes automatically with SYSTEM privileges. This issue has been fixed and will be released in version 8.8.2.

Statistics

2 Posts

Last activity: 2 hours ago

Fediverse

Graylog @Graylog

CVE-2025-49144 is a local privilege escalation in the Notepad++ installer that abuses how regsvr32.exe is called during setup.
We break down:
• what it looks like on real systems
• why Sysmon catches it cleanly
• a high-signal Graylog search + Sigma rule
https://graylog.org/post/detecting-notepad-cve-2025-49144-using-sysmon-logs/

0
0
0
14h ago

Bluesky

OpsMatters @opsmatters.com

The latest update for #Graylog includes "Detecting Notepad++ CVE-2025-49144 Using Sysmon Logs" and "The Human-AI Alliance in #SecurityOperations". #monitoring #logging https://opsmtrs.com/3a4Nn4u

0
0
0
2h ago

CVE-2026-0229

Overview

Palo Alto Networks
Cloud NGFW

11 Feb 2026

Published

11 Feb 2026

Updated

CVSS v4.0

MEDIUM (6.6)

EPSS

0.02%

MITRE

KEV

Description

A denial-of-service (DoS) vulnerability in the Advanced DNS Security (ADNS) feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. Cloud NGFW and Prisma Access® are not impacted by this vulnerability.

Statistics

2 Posts

Last activity: 5 hours ago

Bluesky

キタきつね @kitafox.bsky.social

認証されていない攻撃者が Palo Alto ファイアウォールをメンテナンスモードループに陥らせる可能性がある (CVE-2026-0229) Unauthenticated Attacker Can Trap Palo Alto Firewalls in Maintenance Mode Loop (CVE-2026-0229) #DailyCyberSecurity (Feb 12) securityonline.info/crash-loop-p...

0
0
0
7h ago

セキュリティ対策Lab @securitylab-jp.bsky.social

パロアルトネットワークス、PAN-OSのAdvanced DNS SecurityにDoS脆弱性（CVE-2026-0229） rocket-boys.co.jp/security-mea... #セキュリティ対策Lab #セキュリティ #Security #CybersecurityNews

0
0
0
5h ago

CVE-2026-26007

Overview

pyca
cryptography

10 Feb 2026

Published

11 Feb 2026

Updated

CVSS v4.0

HIGH (8.2)

EPSS

0.01%

MITRE

KEV

Description

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the public_key_from_numbers (or EllipticCurvePublicNumbers.public_key()), EllipticCurvePublicNumbers.public_key(), load_der_public_key() and load_pem_public_key() functions do not verify that the point belongs to the expected prime-order subgroup of the curve. This missing validation allows an attacker to provide a public key point P from a small-order subgroup. This can lead to security issues in various situations, such as the most commonly used signature verification (ECDSA) and shared key negotiation (ECDH). When the victim computes the shared secret as S = [victim_private_key]P via ECDH, this leaks information about victim_private_key mod (small_subgroup_order). For curves with cofactor > 1, this reveals the least significant bits of the private key. When these weak public keys are used in ECDSA , it's easy to forge signatures on the small subgroup. Only SECT curves are impacted by this. This vulnerability is fixed in 46.0.5.

Statistics

2 Posts

Last activity: 7 hours ago

Bluesky

CrowdCyber @crowdcyber.bsky.social

CVE-2026-26007: Python Cryptography Flaw (CVSS 8.2) Leaks Private Keys

0
0
0
10h ago

キタきつね @kitafox.bsky.social

CVE-2026-26007: Pythonの暗号化の脆弱性 (CVSS 8.2) により秘密鍵が漏洩する CVE-2026-26007: Python Cryptography Flaw (CVSS 8.2) Leaks Private Keys #DailyCyberSecurity (Feb 12) securityonline.info/cve-2026-260...

0
0
0
7h ago

CVE-2026-1731

Overview

BeyondTrust
Remote Support(RS) & Privileged Remote Access(PRA)

06 Feb 2026

Published

13 Feb 2026

Updated

CVSS v4.0

CRITICAL (9.9)

EPSS

4.22%

MITRE

KEV

Description

BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability. By sending specially crafted requests, an unauthenticated remote attacker may be able to execute operating system commands in the context of the site user.

Statistics

2 Posts
14 Interactions

Last activity: 12 hours ago

Fediverse

GreyNoise @greynoise

It took less than a day. A PoC for BeyondTrust CVE-2026-1731 hit GitHub, and GreyNoise immediately started seeing reconnaissance from multi-exploit actors hiding behind VPNs + custom tooling. See what our data reveals about who’s mapping targets + how.

🔗 https://www.greynoise.io/blog/reconnaissance-beyondtrust-rce-cve-2026-1731

6
8
1
12h ago

CVE-2026-26081

Overview

Pending

Pending

Published

Pending

Updated

CVSS

Pending

EPSS

Pending

MITRE

KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

2 Posts
3 Interactions

Last activity: 12 hours ago

Fediverse

ScriptFanix💍⏚ ⸫ @ScriptFanix

2 vulnerabilities in HAProxy have been fixed:
CVE-2026-26080 and CVE-2026-26081. DoS affecting QUIC

https://www.haproxy.com/blog/cves-2026-quic-denial-of-service

2
1
0
15h ago

Bluesky

ferramentaslinux.bsky.social @ferramentaslinux.bsky.social

#Debian DSA-6130-1 is out. HAProxy + QUIC = potential instant crash. Here is exactly what CVE-2026-26081 does and how to fix it without breaking your SLOs. 🧵 Read more: 👉 tinyurl.com/4s6uptr7 #Security

0
0
0
12h ago