CVE-2026-21250 — Vulnetix

CVE-2026-21250 PUBLISHED CVSS 7.800000190734863 HIGH

Improper neutralization of special elements used in a command ('command injection') in Windows Notepad App allows an unauthorized attacker to execute code locally.

EPSS 0.66% · 71.3th percentile

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

EPSS Score

0.66%

71.3th percentile

Affected Products

Vendor	Product	Versions
Microsoft	Windows Notepad	11.0.0
microsoft	window_notepad	11.0.0

Timeline

Feb 10, 2026 CVE Published
Feb 10, 2026 PoC Published
Feb 10, 2026 PoC Published
Feb 10, 2026 PoC Published
Feb 10, 2026 PoC Published
Feb 11, 2026 EPSS Score
Feb 11, 2026 PoC Published
Feb 11, 2026 PoC Published
Feb 11, 2026 PoC Published
Feb 11, 2026 PoC Published
Feb 11, 2026 PoC Published
Feb 11, 2026 PoC Published

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21251 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21231 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20846 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21513 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21519 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21247 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21238 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21241 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21244 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21243 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21245 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21232 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21525 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21235 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21248 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21234 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21517 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21250 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21218 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20841 advisory

…and 15 more

Open in Interactive Console →