Executive Summary

Informations
Name CVE-2025-52938 First vendor Publication 2025-06-23
Vendor Cve Last vendor Modification 2025-06-23

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores

Detail

Out-of-bounds Read vulnerability in dail8859 NotepadNext (src/lua/src modules). This vulnerability is associated with program files lparser.C.

This issue affects NotepadNext: through v0.11.

The singlevar() in lparser.c lacks a certain luaK_exp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52938

Sources (Detail)

https://github.com/dail8859/NotepadNext/commit/66b8a97d9fdfd2257996875716f39c...
https://github.com/dail8859/NotepadNext/pull/756
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
Date Informations
2025-06-25 05:20:32
  • Multiple Updates
2025-06-23 17:19:54
  • First insertion