CVE-2026-20841 Windows Notepad App Remote Code Execution Vulnerability

08:00 - 10 Feb 2026

msrc.microsoft.com

Improper neutralization of special elements used in a command ('command injection') in Windows Notepad App allows an unauthorized attacker to execute code over a network.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20841

Article info:

Full Article URL: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20841
Textarea URL (this page):
https://textarea.nl/i/eNrLKCkpKLbS188tLkrWy81MLsovzk8r0UvOz9UvLUhJLEnVTS_NTEnVLyvNyUstSkzKzMksqdR3DnPVNTIwMgMSFiaGAHFQF8g=_2026-02-10
Source: https://api.msrc.microsoft.com/update-guide/rss
Microsoft Security: https://msrc.microsoft.com/update-guide/vulnerability
Publication date: 2026-02-10 08:00:00
Last retrieval: 2026-02-12 20:45:21.250368