Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-57456 |
|
Code Injection in vim (CVE-2026-57456)
code injection in vim (CVE-2026-57456). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.2.0699` or later.
|
| CVE-2026-57455 |
|
Out-of-Bounds Write in c (CVE-2026-57455)
out-of-bounds write in c (CVE-2026-57455). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.2.0698` or later.
|
| CVE-2026-57454 |
|
Out-of-Bounds Read in vim (CVE-2026-57454)
vulnerability in vim (CVE-2026-57454). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0679` or later.
|
| CVE-2026-57453 |
|
Command Injection in vim (CVE-2026-57453)
command injection in vim (CVE-2026-57453). Confidential information can be exposed externally. Mitigation: upgrade to `9.2.0678` or later.
|
| CVE-2026-57452 |
|
Out-of-Bounds Read in vim (CVE-2026-57452)
vulnerability in vim (CVE-2026-57452). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0671` or later.
|
| CVE-2026-57451 |
|
Out-of-Bounds Read in c (CVE-2026-57451)
vulnerability in c (CVE-2026-57451). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0670` or later.
|
| CVE-2026-55895 |
|
OS Command Injection in vim (CVE-2026-55895)
OS command injection in vim (CVE-2026-55895). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.2.0663` or later.
|
| CVE-2026-55892 |
|
Out-of-Bounds Write in c (CVE-2026-55892)
out-of-bounds write in c (CVE-2026-55892). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0662` or later.
|
| CVE-2026-55693 |
|
Out-of-Bounds Write in c (CVE-2026-55693)
out-of-bounds write in c (CVE-2026-55693). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.2.0653` or later.
|
| CVE-2026-52860 |
|
Code Injection in vim (CVE-2026-52860)
code injection in vim (CVE-2026-52860). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52859 |
|
Out-of-Bounds Read in c (CVE-2026-52859)
vulnerability in c (CVE-2026-52859). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52858 |
|
Code Injection in vim (CVE-2026-52858)
code injection in vim (CVE-2026-52858). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47167 |
|
Code Injection in vim (CVE-2026-47167)
code injection in vim (CVE-2026-47167). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47162 |
|
Vulnerability in vim (CVE-2026-47162)
vulnerability in vim (CVE-2026-47162). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46483 |
|
OS Command Injection in vim (CVE-2026-46483)
OS command injection in vim (CVE-2026-46483). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0479` or later.
|
| CVE-2026-45130 |
|
Vulnerability in c (CVE-2026-45130)
vulnerability in c (CVE-2026-45130). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44656 |
|
OS Command Injection in vim (CVE-2026-44656)
OS command injection in vim (CVE-2026-44656). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42307 |
|
OS Command Injection in vim (CVE-2026-42307)
OS command injection in vim (CVE-2026-42307). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34982 |
|
OS Command Injection in vim (CVE-2026-34982)
OS command injection in vim (CVE-2026-34982). Confidential information can be exposed externally. Exploitable via ``complete``.
|
| CVE-2026-34714 |
|
OS Command Injection in vim (CVE-2026-34714)
OS command injection in vim (CVE-2026-34714). Confidential information can be exposed externally.
|
| CVE-2026-33412 |
|
OS Command Injection in vim (CVE-2026-33412)
OS command injection in vim (CVE-2026-33412). Data can be tampered with by attackers.
|
| CVE-2026-25749 |
|
Vulnerability in c (CVE-2026-25749)
vulnerability in c (CVE-2026-25749). Data can be tampered with by attackers.
|
| CVE-2025-22134 |
|
Vulnerability in neovim (CVE-2025-22134)
vulnerability in neovim (CVE-2025-22134). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-43374 |
|
Use-After-Free in netapp (CVE-2024-43374)
vulnerability in netapp (CVE-2024-43374). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48706 |
|
Use-After-Free in vim (CVE-2023-48706)
vulnerability in vim (CVE-2023-48706). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48234 |
|
Vulnerability in vim (CVE-2023-48234)
vulnerability in vim (CVE-2023-48234). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48235 |
|
Vulnerability in vim (CVE-2023-48235)
vulnerability in vim (CVE-2023-48235). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48236 |
|
Vulnerability in vim (CVE-2023-48236)
vulnerability in vim (CVE-2023-48236). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48237 |
|
Vulnerability in vim (CVE-2023-48237)
vulnerability in vim (CVE-2023-48237). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48231 |
|
Use-After-Free in vim (CVE-2023-48231)
vulnerability in vim (CVE-2023-48231). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48232 |
|
Vulnerability in vim (CVE-2023-48232)
vulnerability in vim (CVE-2023-48232). Risk of unauthorized operations or information disclosure. Exploitable via ``cb0b99f0``.
|
| CVE-2023-48233 |
|
Vulnerability in vim (CVE-2023-48233)
vulnerability in vim (CVE-2023-48233). Risk of unauthorized operations or information disclosure. Exploitable via ``ac6378773``.
|
| CVE-2023-46246 |
|
Vulnerability in c (CVE-2023-46246)
vulnerability in c (CVE-2023-46246). Risk of unauthorized operations or information disclosure. Exploitable via ``ga_grow_inner``.
|
| CVE-2023-4781 |
|
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
|
| CVE-2023-4733 |
|
Use After Free in GitHub repository vim/vim prior to 9.0.1840.
Use After Free in GitHub repository vim/vim prior to 9.0.1840.
|
| CVE-2023-4750 |
|
Use After Free in GitHub repository vim/vim prior to 9.0.1857.
Use After Free in GitHub repository vim/vim prior to 9.0.1857.
|
| CVE-2023-4736 |
|
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.
|
| CVE-2023-4735 |
|
Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.
Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.
|
| CVE-2023-4734 |
|
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846.
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846.
|
| CVE-2023-2610 |
|
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1532.
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1532.
|
| CVE-2023-2609 |
|
NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531.
NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531.
|
| CVE-2021-4019 |
|
vim is vulnerable to Heap-based Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
|
| CVE-2017-17087 |
|
Vulnerability in c (CVE-2017-17087)
vulnerability in c (CVE-2017-17087). Confidential information can be exposed externally.
|
| CVE-2017-1000382 |
|
Information Disclosure in vim (CVE-2017-1000382)
vulnerability in vim (CVE-2017-1000382). Confidential information can be exposed externally.
|
| CVE-2017-11109 |
|
Use-After-Free in dos (CVE-2017-11109)
vulnerability in dos (CVE-2017-11109). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6350 |
|
Vulnerability in vim (CVE-2017-6350)
vulnerability in vim (CVE-2017-6350). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6349 |
|
Vulnerability in vim (CVE-2017-6349)
vulnerability in vim (CVE-2017-6349). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5953 |
|
Vulnerability in vim (CVE-2017-5953)
vulnerability in vim (CVE-2017-5953). Successful exploitation can lead to full system takeover.
|