They finally did it. Microsoft has successfully over-engineered a text editor into a threat vector.
This CVE is an 8.8 severity RCE in Notepad of all things.
Apparently, the “innovation” of adding markdown support came with the ability of launching unverified protocols that load and execute remote files.
We have reached a point where the simple act of opening a .md file in a native utility can compromise your system.
The find and replace is based off of the Notepad interface.
It does support searching for newlines and such, but it doesn’t look like it does full regex.
Ah. I use regex replace every week with matching substrings a good few times a month. It’s not any slower to load than notepad and considerably less annoying.