Bleeping Computer

Windows 11 Notepad flaw let files execute silently via Markdown links

If a user opened this Markdown file in Windows 11 Notepad versions 11.2510 and earlier and viewed it in Markdown mode, the above text would appear as a clickable link. If the link is clicked with ...
GIGAZINE

Windows Notepad vulnerable

A remote code execution vulnerability has been discovered in the Windows Notepad application. Microsoft has announced that it has rated the vulnerability as 'Important.' CVE-2026-20841 - Security ...
TweakTown

Extra features for Windows 11 Notepad go beyond worries about bloat, as new security flaw shows

TL;DR: Windows 11's Notepad app has a security flaw rated as a 'high' severity vulnerability, one that allows for remote code execution. The good news is that it's already been patched by Microsoft, ...
theregister

Notepad's new Markdown powers served with a side of remote code execution

Just months after Microsoft added Markdown support to Notepad, researchers have found the feature can be abused to achieve remote code execution (RCE). Tracked as CVE-2026-20841 (8.8), the ...
cybernews

Critical Notepad vulnerability reignites criticism of Microsoft’s forced AI features

The Windows 11 Notepad app, recently upgraded with AI features, now carries a high-severity flaw that exposes users to dangerous attacks. Hackers can simply send boobytrapped text files and remotely ...