Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: vim Clear
ID Title
CVE-2026-57456 Code Injection in vim (CVE-2026-57456)
code injection in vim (CVE-2026-57456). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.2.0699` or later.
CVE-2026-57455 Out-of-Bounds Write in c (CVE-2026-57455)
out-of-bounds write in c (CVE-2026-57455). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.2.0698` or later.
CVE-2026-57454 Out-of-Bounds Read in vim (CVE-2026-57454)
vulnerability in vim (CVE-2026-57454). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0679` or later.
CVE-2026-57453 Command Injection in vim (CVE-2026-57453)
command injection in vim (CVE-2026-57453). Confidential information can be exposed externally. Mitigation: upgrade to `9.2.0678` or later.
CVE-2026-57452 Out-of-Bounds Read in vim (CVE-2026-57452)
vulnerability in vim (CVE-2026-57452). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0671` or later.
CVE-2026-57451 Out-of-Bounds Read in c (CVE-2026-57451)
vulnerability in c (CVE-2026-57451). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0670` or later.
CVE-2026-55895 OS Command Injection in vim (CVE-2026-55895)
OS command injection in vim (CVE-2026-55895). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.2.0663` or later.
CVE-2026-55892 Out-of-Bounds Write in c (CVE-2026-55892)
out-of-bounds write in c (CVE-2026-55892). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0662` or later.
CVE-2026-55693 Out-of-Bounds Write in c (CVE-2026-55693)
out-of-bounds write in c (CVE-2026-55693). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.2.0653` or later.
CVE-2026-52860 Code Injection in vim (CVE-2026-52860)
code injection in vim (CVE-2026-52860). Successful exploitation can lead to full system takeover.
CVE-2026-52859 Out-of-Bounds Read in c (CVE-2026-52859)
vulnerability in c (CVE-2026-52859). Risk of unauthorized operations or information disclosure.
CVE-2026-52858 Code Injection in vim (CVE-2026-52858)
code injection in vim (CVE-2026-52858). Successful exploitation can lead to full system takeover.
CVE-2026-47167 Code Injection in vim (CVE-2026-47167)
code injection in vim (CVE-2026-47167). Risk of unauthorized operations or information disclosure.
CVE-2026-47162 Vulnerability in vim (CVE-2026-47162)
vulnerability in vim (CVE-2026-47162). Successful exploitation can lead to full system takeover.
CVE-2026-46483 OS Command Injection in vim (CVE-2026-46483)
OS command injection in vim (CVE-2026-46483). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.2.0479` or later.
CVE-2026-45130 Vulnerability in c (CVE-2026-45130)
vulnerability in c (CVE-2026-45130). Risk of unauthorized operations or information disclosure.
CVE-2026-44656 OS Command Injection in vim (CVE-2026-44656)
OS command injection in vim (CVE-2026-44656). Risk of unauthorized operations or information disclosure.
CVE-2026-42307 OS Command Injection in vim (CVE-2026-42307)
OS command injection in vim (CVE-2026-42307). Risk of unauthorized operations or information disclosure.
CVE-2026-34982 OS Command Injection in vim (CVE-2026-34982)
OS command injection in vim (CVE-2026-34982). Confidential information can be exposed externally. Exploitable via ``complete``.
CVE-2026-34714 OS Command Injection in vim (CVE-2026-34714)
OS command injection in vim (CVE-2026-34714). Confidential information can be exposed externally.
CVE-2026-33412 OS Command Injection in vim (CVE-2026-33412)
OS command injection in vim (CVE-2026-33412). Data can be tampered with by attackers.
CVE-2026-25749 Vulnerability in c (CVE-2026-25749)
vulnerability in c (CVE-2026-25749). Data can be tampered with by attackers.
CVE-2025-22134 Vulnerability in neovim (CVE-2025-22134)
vulnerability in neovim (CVE-2025-22134). Risk of unauthorized operations or information disclosure.
CVE-2024-43374 Use-After-Free in netapp (CVE-2024-43374)
vulnerability in netapp (CVE-2024-43374). Risk of unauthorized operations or information disclosure.
CVE-2023-48706 Use-After-Free in vim (CVE-2023-48706)
vulnerability in vim (CVE-2023-48706). Risk of unauthorized operations or information disclosure.
CVE-2023-48234 Vulnerability in vim (CVE-2023-48234)
vulnerability in vim (CVE-2023-48234). Risk of unauthorized operations or information disclosure.
CVE-2023-48235 Vulnerability in vim (CVE-2023-48235)
vulnerability in vim (CVE-2023-48235). Risk of unauthorized operations or information disclosure.
CVE-2023-48236 Vulnerability in vim (CVE-2023-48236)
vulnerability in vim (CVE-2023-48236). Risk of unauthorized operations or information disclosure.
CVE-2023-48237 Vulnerability in vim (CVE-2023-48237)
vulnerability in vim (CVE-2023-48237). Risk of unauthorized operations or information disclosure.
CVE-2023-48231 Use-After-Free in vim (CVE-2023-48231)
vulnerability in vim (CVE-2023-48231). Risk of unauthorized operations or information disclosure.
CVE-2023-48232 Vulnerability in vim (CVE-2023-48232)
vulnerability in vim (CVE-2023-48232). Risk of unauthorized operations or information disclosure. Exploitable via ``cb0b99f0``.
CVE-2023-48233 Vulnerability in vim (CVE-2023-48233)
vulnerability in vim (CVE-2023-48233). Risk of unauthorized operations or information disclosure. Exploitable via ``ac6378773``.
CVE-2023-46246 Vulnerability in c (CVE-2023-46246)
vulnerability in c (CVE-2023-46246). Risk of unauthorized operations or information disclosure. Exploitable via ``ga_grow_inner``.
CVE-2023-4781 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
CVE-2023-4733 Use After Free in GitHub repository vim/vim prior to 9.0.1840.
Use After Free in GitHub repository vim/vim prior to 9.0.1840.
CVE-2023-4750 Use After Free in GitHub repository vim/vim prior to 9.0.1857.
Use After Free in GitHub repository vim/vim prior to 9.0.1857.
CVE-2023-4736 Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.
CVE-2023-4735 Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.
Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.
CVE-2023-4734 Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846.
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846.
CVE-2023-2610 Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1532.
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1532.
CVE-2023-2609 NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531.
NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531.
CVE-2021-4019 vim is vulnerable to Heap-based Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
CVE-2017-17087 Vulnerability in c (CVE-2017-17087)
vulnerability in c (CVE-2017-17087). Confidential information can be exposed externally.
CVE-2017-1000382 Information Disclosure in vim (CVE-2017-1000382)
vulnerability in vim (CVE-2017-1000382). Confidential information can be exposed externally.
CVE-2017-11109 Use-After-Free in dos (CVE-2017-11109)
vulnerability in dos (CVE-2017-11109). Successful exploitation can lead to full system takeover.
CVE-2017-6350 Vulnerability in vim (CVE-2017-6350)
vulnerability in vim (CVE-2017-6350). Successful exploitation can lead to full system takeover.
CVE-2017-6349 Vulnerability in vim (CVE-2017-6349)
vulnerability in vim (CVE-2017-6349). Successful exploitation can lead to full system takeover.
CVE-2017-5953 Vulnerability in vim (CVE-2017-5953)
vulnerability in vim (CVE-2017-5953). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →