Out-of-bounds Read vulnerability in rizonesoft Notepad3 (... · CVE-2026-4744 · GitHub Advisory Database · GitHub

Out-of-bounds Read vulnerability in rizonesoft Notepad3 (...

Critical severity Unreviewed Published Mar 24, 2026 to the GitHub Advisory Database • Updated Mar 24, 2026

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

Out-of-bounds Read vulnerability in rizonesoft Notepad3 (‎scintilla/oniguruma/src modules). This vulnerability is associated with program files regcomp.C‎.

This issue affects Notepad3: before 6.25.714.1.

References

Published by the National Vulnerability Database

Mar 24, 2026

Published to the GitHub Advisory Database Mar 24, 2026

Last updated Mar 24, 2026

Severity

Critical

/ 10

CVSS v4 base metrics

Exploitability Metrics

Attack Vector Local

Attack Complexity Low

Attack Requirements None

Privileges Required None

User interaction Active

Vulnerable System Impact Metrics

Confidentiality High

Integrity High

Availability High

Subsequent System Impact Metrics

Confidentiality High

Integrity High

Availability High

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:A/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Amber

⚡