Notepad++ version 8.5.7 releases cyber fixes for multiple buffer overflow zero-days that will lead to code execution by trapping users to open particularly crafted files.
Notepad++ is a widely known free source code editor that supports many programming languages and is extended via plugins. It offers productivity-enhancing features such as syntax highlighting and multi-tabbed editing.
Notepad++ opens about its most severe flaws, such as CVE-2023-40031, assigned a CVSS v3 rating of 7.8 (high) that potentially leads to harm code execution.
Eventually, the security flaws acknowledged the problem in the main code. With this, Notepad++ 8.5.7 has also released other fixes for security vulnerabilities and bugs.