Vulnerabilities

Ultimate Guide: CVE-2026-23512 - SumatraPDF has an Untrusted Search Path in sumatrapdf/src/AppTools.cpp

2026-01-14 0 views admin

CVE ID : CVE-2026-23512 Published : Jan. 14, 2026, 9:15 p.m. | 29 minutes ago Description : SumatraPDF is a multi-format reader for Windows. In 3.5.2 and earlier, there is a Untrusted Search Path vulnerability when Advanced Options setting is trigger. The application executes notepad.exe without specifying an absolute path when using the Advanced Options setting. On Windows, this allows execution of a malicious notepad.exe placed in the application's installation directory, leading to arbitrary code execution. Severity: 8.6 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-23512

Severity

HIGH

Published

Jan. 14, 2026

Affected Product: Windows

Impact: code execution

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-23512highwindows

Ultimate Guide: CVE-2026-23512 - SumatraPDF has an Untrusted Search Path in sumatrapdf/src/AppTools.cpp

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2026-0960 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

Essential Guide: CVE-2026-0959 - Out-of-bounds Write in Wireshark

Update: CVE-2026-0861 - Integer overflow in memalign leads to heap corruption

CVE-2026-0961 - Out-of-bounds Write in Wireshark - Full Analysis

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting