AI description
CVE-2025-56383 is a DLL hijacking vulnerability found in Notepad++ version 8.8.3. This vulnerability allows an attacker to execute arbitrary code on a victim's machine. The vulnerability involves replacing a legitimate DLL file with a malicious one, which can then be loaded and executed when the user launches the application. This can be achieved by placing the malicious DLL in a directory that is searched before the actual library's location. An attacker who has already gained initial access to a system can exploit this flaw to establish persistence.
- Description
- Notepad++ v8.8.3 has a DLL hijacking vulnerability, which can replace the original DLL file to execute malicious code. NOTE: this is disputed by multiple parties because the behavior only occurs when a user installs the product into a directory tree that allows write access by arbitrary unprivileged users.
- Source
- cve@mitre.org
- NVD status
- Undergoing Analysis
- CNA Tags
- disputed
CVSS 3.1
- Type
- Secondary
- Base score
- 8.4
- Impact score
- 5.9
- Exploitability score
- 2.5
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-427
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
1
๐จ Developers ๐งโ๐ป: Se ha identificado una vulnerabilidad crรญtica de secuestro de DLL en Notepad++ (CVE-2025-56383). Un atacante local puede ejecutar cรณdigo malicioso al reemplazar DLLs de plugins como NppExport.dll. https://t.co/tDE2GoiP9O #ciberseguridad #developers
@henryraul
2 Oct 2025
139 Impressions
7 Retweets
9 Likes
1 Bookmark
0 Replies
0 Quotes
โ ๏ธVulnerabilidad en Notepad++ โCVE-2025-56383 โก๏ธMรกs info: https://t.co/XG1JAfqwpP https://t.co/3ves8QKTDd
@CERTpy
1 Oct 2025
102 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
๐จ Notepad++ DLL Hijacking Detection DefenderXDR Custom Detection for CVE-2025-56383 ๐ซก https://t.co/v00kBzEYDU #Cybersecurity #NotepadPlusPlus #DLLHijacking https://t.co/kj2Z6oDI95
@0x534c
30 Sept 2025
3251 Impressions
14 Retweets
66 Likes
49 Bookmarks
2 Replies
0 Quotes
Is CVE-2025-56383 really a thing we should spend any time caring about? https://t.co/3NHdwqEfiF
@UK_Daniel_Card
30 Sept 2025
4773 Impressions
4 Retweets
14 Likes
4 Bookmarks
1 Reply
1 Quote
GitHub - zer0t0/CVE-2025-56383-Proof-of-Concept: CVE-2025-56383-Proof-of-Concept - https://t.co/MdzFkrMQKk
@piedpiper1616
30 Sept 2025
2805 Impressions
14 Retweets
41 Likes
21 Bookmarks
1 Reply
0 Quotes
๐จ Notepad++ Vulnerability Alert CVE-2025-56383 enables DLL hijacking via plugin replacement (e.g. NppExport.dll), allowing stealthy code execution. https://t.co/nKyRoFUTRM With MDE covering ~28% of endpoints (163 orgs, 60K+ devices), the attack surface is massive. ๐ก๏ธ D
@0x534c
30 Sept 2025
12937 Impressions
41 Retweets
179 Likes
98 Bookmarks
2 Replies
4 Quotes
PoC ANALYSIS: DEEP DIVE. We break down the Notepad++ DLL Hijacking Flaw (CVE-2025-56383), detailing how a single vulnerability enables Remote Code Execution (RCE). Get the technical breakdown of the exploit primitive. Read full report on - https://t.co/3kt6QKkWGs https://t.co/OW
@Iambivash007
29 Sept 2025
19 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
Notepad++ vulnerable a ataques de secuestro de DLL: CVE-2025-56383 https://t.co/wamDsCjIr3
@unaaldia
29 Sept 2025
527 Impressions
4 Retweets
4 Likes
0 Bookmarks
0 Replies
0 Quotes
csirt_it: โผ #Notepad++: disponibile un #PoC per lo sfruttamento della CVE-2025-56383 che interessa il noto tool di editing testuale Rischio: ๐ด Tipologia: ๐ธArbitrary Code Execution ๐ https://t.co/zuN8NiKmdb โ ๏ธ Monitorare il rilascio di aggiornamenti https://t.co
@Vulcanux_
29 Sept 2025
71 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
๐ ๐๐๐ญ๐๐ฌ๐ญ ๐๐๐ ๐๐ซ๐๐๐ค๐๐จ๐ฐ๐ง ๐๐ฏ๐๐ข๐ฅ๐๐๐ฅ๐ ๐ง๐จ๐ฐ! CVE-2025-56383 targets Notepad++ with a DLL hijacking attack. Learn how it works and how to defend against this stealthy threat. ๐ Check the deta
@PurpleOps_io
29 Sept 2025
50 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
โ ๏ธ Notepad++ DLL Hijacking Vulnerability โ CVE-2025-56383 ๐จ A new security flaw has been discovered in Notepad++ (CVE-2025-56383) that could allow attackers to hijack DLL files and execute malicious code. #cybersecurity #notepad++ #vulnerability #dllhijacking #infosec
@Zoffecinfotech
29 Sept 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A DLL hijacking flaw (CVE-2025-56383) in Notepad++ v8.8.3 allows attackers to replace a trusted DLL with a malicious one to execute arbitrary code. #NotepadPlusPlus #DLLHijacking #CVE #Cybersecurity #SecurityAlert https://t.co/AhrgOeKAOK
@the_yellow_fall
29 Sept 2025
117 Impressions
1 Retweet
3 Likes
0 Bookmarks
0 Replies
0 Quotes
Notepad++ v8.8.3ใซใใใฆใ่ตทๅๆใซ่ชญใฟ่พผใพใใDLLใๅทฎใๆฟใใใใจใงไปปๆใณใผใใๅฎ่กใใใ่ๅผฑๆง๏ผCVE-2025-56383๏ผใๅ ฌ้ใใใใๆปๆ่ ใฏ่ขซๅฎณ่ ็ฐๅขใซๆชๆใใDLLใ้ ็ฝฎใใใ ใใงใใใญใฐใฉใ ่ตทๅๆใซใใซ
@yousukezan
29 Sept 2025
1465 Impressions
2 Retweets
10 Likes
2 Bookmarks
0 Replies
0 Quotes
CVE-2025-56383 Notepad++ v8.8.3 has a DLL hijacking vulnerability, which can replace the original DLL file to execute malicious code. https://t.co/DCJxqT6oeI
@CVEnew
26 Sept 2025
381 Impressions
0 Retweets
1 Like
1 Bookmark
0 Replies
0 Quotes