Known Vulnerabilities for products from Vim
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Vim".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-46483 json | Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tar#Vimuntar(... | Not Provided | 2026-05-15 | 2026-05-19 |
| CVE-2026-45130 json | Vim is an open source, command line text editor. Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() ... | Not Provided | 2026-05-08 | 2026-05-18 |
| CVE-2026-44656 json | Vim is an open source, command line text editor. Prior to version 9.2.0435, an OS command injection vulnerability exists in V... | Not Provided | 2026-05-08 | 2026-05-14 |
| CVE-2026-42307 json | Vim is an open source, command line text editor. Prior to version 9.2.0383, an OS command injection vulnerability exists in t... | Not Provided | 2026-05-08 | 2026-05-14 |
| CVE-2026-41411 json | Vim is an open source, command line text editor. Prior to 9.2.0357, A command injection vulnerability exists in Vim's tag fil... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-39881 json | Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans inter... | Not Provided | 2026-04-08 | 2026-04-22 |
| CVE-2026-35177 json | Vim is an open source, command line text editor. Prior to 9.2.0280, a path traversal bypass in Vim's zip.vim plugin allows ov... | Not Provided | 2026-04-06 | 2026-04-20 |
| CVE-2026-34982 json | Vim is an open source, command line text editor. Prior to version 9.2.0276, a modeline sandbox bypass in Vim allows arbitrary... | Not Provided | 2026-04-06 | 2026-04-22 |
| CVE-2026-34714 json | Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default configuration, ... | Not Provided | 2026-03-30 | 2026-04-03 |
| CVE-2025-53906 json | Vim is an open source, command line text editor. Prior to version 9.1.1551, a path traversal issue in Vim’s zip.vim plugin ... | Not Provided | 2025-07-15 | 2026-04-01 |
| CVE-2025-9390 json | A security flaw has been discovered in vim up to 9.1.1615. Affected by this vulnerability is the function main of the file sr... | Not Provided | 2025-08-24 | 2026-04-29 |
| CVE-2025-9389 json | A vulnerability was identified in vim 9.1.0000. Affected is the function __memmove_avx_unaligned_erms of the file memmove-vec... | Not Provided | 2025-08-24 | 2026-04-29 |
| CVE-2023-48706 json | 4.7 - MEDIUM | 2023-11-22 | 2024-01-05 | |
| CVE-2023-48237 json | 4.3 - MEDIUM | 2023-11-16 | 2024-01-25 | |
| CVE-2023-48236 json | 4.3 - MEDIUM | 2023-11-16 | 2024-01-25 | |
| CVE-2023-48235 json | 4.3 - MEDIUM | 2023-11-16 | 2024-01-25 | |
| CVE-2023-48234 json | 4.3 - MEDIUM | 2023-11-16 | 2024-01-25 | |
| CVE-2023-48233 json | 4.3 - MEDIUM | 2023-11-16 | 2024-01-25 | |
| CVE-2023-48232 json | 4.3 - MEDIUM | 2023-11-16 | 2024-01-25 | |
| CVE-2023-46246 json | Vim is an improved version of the good old UNIX editor Vi. Heap-use-after-free in memory allocated in the function `ga_grow_i... | 5.5 - MEDIUM | 2023-10-27 | 2023-11-07 |
Known software with vulnerabilities from Vim
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Vim | Vim | 5.6 |