RmDebArc_53d ago
Seriously, just stop (or use Linux)
Show threadMalix3d ago

notepad has formatting now? o_O

does it produce markdown or something?

Show threadFirst_Thunder
Yep it’s markdown, and yep they had a CVE with second highest grade cause of it
Mar 18 at 8:54amWeb
Show threadMalix3d ago
heh, ofc. Apparently something to do with file:// and such uri handling, apparently executing local files? Yikes.
Show threadthethunderwolf3d ago

not just local files

if you click a link to file:///123.45.67.89:69420/files-download/virus.exe it will download and run virus.exe

it still works, but now there is a “Dangerous Link Location: This is not a web link and may lead to the execution of malicious code” warning, but previously it would silently run the file.

Show threadMalix2d ago

kinda wild a file-link ever went straight to executing it after download - which on it’s own could be dangerous as well.

I guess the “the s in IOT stands for security” also applies to notepad: “the s in vibecoding stands for security”

Show threadMartineski3d ago
Aren’t CVE grades meaningless anyway with how they are declared in real world?
Show threadmarine_mustang2d ago
We run CVEs through our software inventory and configuration and come up with a new score that measures how bad it is for us.
Show threadapftwb3d ago

www.cve.org/CVERecord?id=CVE-2026-20841

Neat