CVE-2026-3008

Received
Published: 27 Apr 2026, 06:04
Last modified:27 Apr 2026, 09:31

Vulnerability Summary

Overall Risk (default)
medium
26/100
CVSS Score
6.6 MEDIUM
v3.1 (cve.org)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

27 Apr 2026, 06:04
Published
Vulnerability first disclosed
27 Apr 2026, 09:31
Last Modified
Vulnerability information updated

Description

Successful exploitation of the string injection vulnerability could allow an attacker to obtain memory address information or crash the application.

CVSS Metrics

  • v3.1MEDIUMScore: 6.6CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H

Affected Systems

  • notepad++notepad++

    8.9.3

References (5)