216.73.217.64

CVE-2025-52938

· Published 23/06/2025 10:15 · Modified 23/06/2025 20:16

Labels: CVE-2025-52938 2025-06-23CVE-2025-52938CWE-125[email protected]

Essential information

Published
23/06/2025 10:15
Modified
23/06/2025 20:16
Author
Creator
CVSS
5.1 MEDIUM (v3) 5.1 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Out-of-bounds Read vulnerability in dail8859 NotepadNext (src/lua/src modules). This vulnerability is associated with program files lparser.C. This issue affects NotepadNext: through v0.11. The singlevar() in lparser.c lacks a certain luaK_exp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
notepadnext / notepadnext cpe:2.3:a:notepadnext:notepadnext:<=0.11:*:*:*:*:*:*:*

References