Home > Security Alerts > Microsoft confirms worrying Remote Code Execution security flaw in Notepad and is rolling out a fix

Microsoft confirms worrying Remote Code Execution security flaw in Notepad and is rolling out a fix

February 13, 2026 Friday

CVE-2026-20841 – malicious actors may be able to trick Windows 11 users into clicking a malicious link inside a Markdown (.md) file opened in Notepad.

Latest News

HKU Event Management System (HKUEMS): New Enhancements for Registrants and Event Managers

More AI Models on HKU ChatGPT and HKU DALL·E, and APIs are Now Available to Students

LabArchives Laboratory Notebook Cloud Platform available to HKU research groups 

Your opinion matters, share your thoughts by completing the survey about HKU communication channels

Mobile Mail App EAS version below 16.1 will no longer support after March 2026

Popular Services:

uPrint
Study Rooms in Learning Commons
Software Download
HKU Virtual Private Network (HKUVPN)
Application

Microsoft confirms worrying Remote Code Execution security flaw in Notepad and is rolling out a fix

About ITS

Alerts

Service Request & Support