CVE-2025-49144 | notepad-plus-plus Notepad++ up to 8.8.1 Installer least privilege violation (GHSA-9vx8-v79m-6m24)

A vulnerability was found in notepad-plus-plus Notepad++ up to 8.8.1. It has been rated as critical. Affected by this issue is some unknown functionality of the component Installer. The manipulation leads to least privilege violation.

This vulnerability is handled as CVE-2025-49144. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More