HIGH🚩 CISA KEV⚡ EXPLOIT✓ PATCH🇵🇱 Wersja polska

CVE-2025-15556

CVSS 7.7v4.0pub. 2026-02-03upd. 2026-02-13

Notepad++ versions prior to 8.8.9, when using the WinGUp updater, contain an update integrity verification vulnerability where downloaded update metadata and installers are not cryptographically verified. An attacker able to intercept or redirect update traffic can cause the updater to download and execute an attacker-controlled installer, resulting in arbitrary code execution with the privileges of the user.

CVSS Vector
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Notepad Plus Plus Notepad\+\+

    APP
    Notepad-Plus-Plus
    < 8.8.9

CISA KEV — detailsi

Vendori
Notepad++
Producti
Notepad++
Added to KEVi
February 12, 2026
Remediation deadline (US Federal)i
March 5, 2026(overdue)
Required action (CISA)i

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CISA descriptioni

Notepad++ when using the WinGUp updater, contains a download of code without integrity check vulnerability that could allow an attacker to intercept or redirect update traffic to download and execute an attacker-controlled installer. This could lead to arbitrary code execution with the privileges of the user.

🔴
IMMEDIATE ACTION
Actively exploited in the wild (CISA KEV). Patch immediately.
CISA DEADLINE: 5 marca 2026
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2026-52884HIGH7.8ten sam produkt

Notepad++ is a free and open-source source code editor. In v8.9.6.1, isInTrustedDirectory() does NOT canonical...

CVE-2026-48800HIGH7.8ten sam produkt

Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the <Command> tag text content insid...

CVE-2026-46710HIGH7.5ten sam produkt

Notepad++ is a free and open-source source code editor. From 8.9.4 until 8.9.6, Notepad++ contains a local pri...

CVE-2026-48778HIGH7.8ten sam produkt

Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the <GUIConfig name="commandLineInte...

CVE-2026-52885HIGH7.5ten sam produkt

Notepad++ is a free and open-source source code editor. Prior to 8.9.6.4, NppCommands.cpp checks the HMAC of t...