A critical privilege escalation vulnerability (CVE-2025-49144) in Notepad++ v8.8.1 enables attackers to achieve full system control through a supply-chain attack. The flaw exploits the installer’s insecure search path behavior, allowing unprivileged users to escalate privileges toNT AUTHORITY\SYSTEMwith minimal user interaction. This marks one of the most severe vulnerabilities discovered in the popular text editor, with […] The post Notepad++ Vulnerability Allows Full System Takeover, PoC Released appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
First seen on gbhackers.com
Jump to article: gbhackers.com/notepad-vulnerability/
