THREATOPS
THREAT OPSThreat News › CVE-2026-20841: Arbitrary Code Execution in the Windows Notepad

CVE-2026-20841: Arbitrary Code Execution in the Windows Notepad

lowzdi_blogPublished 2026-02-19

<p class=""><em>In this excerpt of a TrendAI Research Services vulnerability report, Nikolai Skliarenko and Yazhi Wang of the TrendAI Research team detail a recently patched command injection vulnerability in the Windows Notepad application. This bug was originally discovered by</em> <em>Cristian Papa and Alasdair Gorniak of Delta Obscura. Successful exploitation of this vulnerability could result

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://www.thezdi.com/blog/2026/2/19/cve-2026-20841-arbitrary-code-execution-in-the-windows-notepad