CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Mar 5, 2026

CVE-2025-15556

High

EPSS 4.3%CISA KEV

Description

Notepad++ when using the WinGUp updater, contains a download of code without integrity check vulnerability that could allow an attacker to intercept or redirect update traffic to download and execute an attacker-controlled installer. This could lead to arbitrary code execution with the privileges of the user.

EPSS — Exploit Probability

4.3%

Higher than 88.6% of all CVEs

Required Action

https://notepad-plus-plus.org/news/clarification-security-incident/ ; https://community.notepad-plus-plus.org/topic/27298/notepad-v8-8-9-vulnerability-fix ; https://nvd.nist.gov/vuln/detail/CVE-2025-15556

Risk Assessment

ELEVATED

In CISA KEV

Details

Severity: High
EPSS: 4.3%
CISA KEV: Yes
Ransomware: Unknown
Articles: 0

Timeline

Published

Feb 12, 2026

Added to KEV

Feb 12, 2026

Remediation Due

Mar 5, 2026

Affected Product

Notepad++

View all Notepad++ CVEs

External Links

NVD (NIST)CVE Details MITRE CVE