What is CVE-2025-52939?

CVE-2025-52939 is a vulnerability in Dail8859 Notepadnext, classified under Out-of-bounds Write. Published 2025-06-23.

Is CVE-2025-52939 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Dail8859 Notepadnext

CVE-2025-52939

Out-of-bounds Write vulnerability in dail8859 NotepadNext (src/lua/src modules). This vulnerability is associated with program files ldebug.C, lvm.C. This issue affects NotepadNext: through v0.11.

Vulnerability class: Buffer Overflow

EPSS: 0.001 (29.2th percentile) — read the EPSS interpretation.

Affected products

Dail8859 Notepadnext — versions 0

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

github.com/dail8859/NotepadNext/pull/757/files (patch, third-party-advisory)
github.com/dail8859/NotepadNext/commit/3e928d91b8fc8bb5c77801ee8652f41e98d12571 (patch)

Frequently asked questions

What is CVE-2025-52939?: CVE-2025-52939 is a vulnerability in Dail8859 Notepadnext, classified under Out-of-bounds Write. Published 2025-06-23.
Is CVE-2025-52939 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.