Primary

Context

Macaron Notes Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in Macaron Notes version 5.5. This issue allows attackers to crash the application by creating notes with extremely long character strings. By generating a payload of 350,000 repeated characters and pasting it into a note field, the application can be forced to stop functioning.

Impact

Exploitation of this vulnerability leads to a crash of the Macaron Notes application, causing it to stop working entirely.

Reproduction

To reproduce this vulnerability, open Macaron Notes version 5.5 on iOS. Create a new note and run a Python script that generates a text file containing 350,000 repeated characters. Copy the contents of this file and paste it into the note field. The application will crash as a result.

Added: May 16, 2026, 4:25 PM

Updated: May 16, 2026, 4:25 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

8.5

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

8.5

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Macaron Notes Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

Macaron Notes

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating