The vulnerability relates to an improper neutralization of special elements used in a command ('command injection') in Windows Notepad App, this allows an unauthorized attacker to execute code locally.
CVE Link
Exploit Type
Product Name