CVE-2022-31901

MEDIUM

Notepad++ < 8.4.3 - Denial of Service via Crafted Files

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-31901. PoCs published by CDACesec.

AI-analyzed exploit summary The repository provides a detailed technical analysis of CVE-2022-31901, a DoS vulnerability in Notepad++ (x86) versions up to 8.4.3. It includes root cause analysis, crash dump analysis, and tested versions/environments, but lacks functional exploit code.

Description

Buffer overflow in function Notepad_plus::addHotSpot in Notepad++ v8.4.3 and earlier allows attackers to crash the application via two crafted files.

Exploits (1)

nomisec WRITEUP

by CDACesec · poc

https://github.com/CDACesec/CVE-2022-31901

View Code ZIP pw:eip

The repository provides a detailed technical analysis of CVE-2022-31901, a DoS vulnerability in Notepad++ (x86) versions up to 8.4.3. It includes root cause analysis, crash dump analysis, and tested versions/environments, but lacks functional exploit code.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Notepad++ (x86) <= 8.4.3

No auth needed

Prerequisites: Two specially crafted text files

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://github.com/CDACesec/CVE-2022-31901

Scores

CVSS v3 6.5

EPSS 0.0131

EPSS Percentile 66.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-787

Status published

Products (1)

notepad-plus-plus/notepad\+\+ < 8.4.3

Published Jan 19, 2023

Tracked Since Feb 18, 2026