CVE-2023-0909

LOW

Notepad-- - Improper Resource Release

Title source: rule

Description

A vulnerability, which was classified as problematic, was found in cxasm notepad-- 1.22. This affects an unknown part of the component Directory Comparison Handler. The manipulation leads to denial of service. The attack needs to be approached locally. The associated identifier of this vulnerability is VDB-221475.

Exploits (1)

gitee 15,338 stars

by cxasm · c++writeup

https://gitee.com/cxasm/notepad--/issues/I6C80Z

References (3)

[Exploit, Issue Tracking] https://gitee.com/cxasm/notepad--/issues/I6C80Z

[Permissions Required, Third Party Advisory] https://vuldb.com/?ctiid.221475

[Third Party Advisory] https://vuldb.com/?id.221475

Scores

CVSS v3 3.3

EPSS 0.0005

EPSS Percentile 15.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Classification

CWE

CWE-404

Status published

Affected Products (1)

notepad--_project/notepad--

Timeline

Published Feb 18, 2023

Tracked Since Feb 18, 2026