根据Rapid7和卡巴斯基的报告，被篡改的更新使攻击者能够投递一个此前未记录的后门程序，名为Chrysalis。这起供应链事件被跟踪为CVE标识符CVE-2025-15556（CVSS评分：7.7），已被归因于名为Lotus ...

Microsoft patches CVE-2026-20841, a high-severity Windows Notepad flaw that could allow code execution via malicious Markdown ...

Notepad has quietly evolved over the past few years, and image support could mark its biggest shift yet, especially after Microsoft removed WordPad from Windows and left a gap for richer editing. The ...

微软近日发布了一项安全更新，修复了 Windows“记事本”应用程序中的一个高危漏洞。需注意的是，此问题与近期 Notepad++ 出现的安全事件无关。该漏洞可能被攻击者利用，在受害者计算机上远程执行恶意代码。

Users could be tricked into running arbitrary code, but the issue was patched last week.

Why can't it just be a basic text editor?!

Microsoft has patched a high-severity RCE vulnerability in the Windows 11 Notepad app that could allow attackers to silently execute malicious files ...

PCWorld reports that Microsoft is adding image support to Notepad, bringing a feature previously exclusive to WordPad to the ...

Microsoft has fixed a "remote code execution" vulnerability in Windows 11 Notepad that allowed attackers to execute local or ...

According to Microsoft's release notes, the update fixes 25 elevation of privilege flaws, 12 remote code execution ...

Microsoft is reportedly working on yet another "advanced" Notepad feature that has little to do with basic text editing.

Microsoft has fixed a serious security vulnerability affecting Markdown files in Notepad. In the company’s Tuesday patch ...