Vim is a cross-platform text editor. A denial of service vulnerability exists in Vim versions prior to 9.0.1392, which stems from the presence of a NULL pointer dereference in the utfc_ptr2len function, which can be exploited to cause a denial of service via crafted input.