Lucene search
+L

7 matches found

OSV
OSV
added 2026/06/08 4:15 a.m.5 views

CVE-2026-11487 Neovim View Branch secure.lua M.read command injection

A flaw has been found in Neovim up to 0.12.2. Affected by this issue is the function M.read of the file runtime/lua/vim/secure.lua of the component View Branch. Executing a manipulation of the argument path can lead to command injection. It is possible to launch the attack on the local host. The...

4.8CVSS5.5AI score0.00923EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.6 views

NewStart CGSL MAIN 6.06 (SP) : vim Vulnerability (NS-SA-2026-0010)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has vim packages installed that are affected by a vulnerability: - getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated...

9.3CVSS6.1AI score0.19111EPSS
Exploits5References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.7 views

SUSE CVE-2019-12735

getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assertfails or nviminput in Neovim...

7.8CVSS7.9AI score0.19111EPSS
Exploits5References13
The Hacker News
The Hacker News
added 2019/06/10 6:26 p.m.3 views

Your Linux Can Get Hacked Just by Opening a File in Vim or Neovim Editor

Linux users, beware! If you haven't recently updated your Linux operating system, especially the command-line text editor utility, do not even try to view the content of a file using Vim or Neovim. Security researcher Armin Razmjou recently discovered a high-severity arbitrary OS command executio...

9.3CVSS8.1AI score0.19111EPSS
Exploits5
CNVD
CNVD
added 2019/06/10 12:0 a.m.3 views

Vim and Neovim Arbitrary Code Execution Vulnerability

Vim is an editor for the UNIX platform.Neovim is a refactored version of Vim. An arbitrary code execution vulnerability exists in the Vim and Neovim getchar.c file, which allows remote attackers to exploit the vulnerability by submitting a special file request that induces the user to parse it,...

9.3CVSS9.5AI score0.19111EPSS
Exploits5References1
CNVD
CNVD
added 2019/06/05 12:0 a.m.4 views

Vim&Neovim Arbitrary Code Execution Vulnerability

Vim is a text editor developed from vi. Neovim is a refactoring project based on the vim source code. An arbitrary code execution vulnerability exists in Vim and Neovim, which can be exploited to execute arbitrary commands on a target machine by tricking a user into opening a crafted file using v...

8.3AI score
Exploits0References1
OSV
OSV
added 2019/06/05 12:0 a.m.3 views

UBUNTU-CVE-2019-12735

getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assertfails or nviminput in Neovim...

8.6CVSS6.2AI score0.19111EPSS
Exploits5References6
Rows per page
Query Builder