Security Advisory

CVE-2026-2538

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-16 06:02:06
Last updated 2026-02-23 10:06:24
Assigner VulDB
State PUBLISHED

Description

A security flaw has been discovered in Flos Freeware Notepad2 4.2.22/4.2.23/4.2.24/4.2.25. Affected is an unknown function in the library Msimg32.dll. Performing a manipulation results in uncontrolled search path. Attacking locally is a requirement. The attacks complexity is rated as high. The exploitability is told to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.