CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.1.1551 Description Vim, an open-source command-line text editor, contains a path traversal issue within its zip.vim plugin. This issue allows overwriting of arbitrary files when opening specially crafted zip archives...

8.8CVSS6.8AI score0.00081EPSS

Exploits2References125

Positive Technologies•added 2025/07/15 12:0 a.m.•1 views

PT-2025-29684

Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.1.1552 Description Vim is an open source, command line text editor. A path traversal issue exists in Vim’s tar.vim plugin prior to version 9.1.1552, potentially allowing overwriting of arbitrary files when opening...

8.8CVSS7AI score0.00081EPSS

Exploits2References89

OSV•added 2025/03/30 12:0 a.m.•8 views

DLA-4097-1 vim - security update

Bulletin has no description...

8.4CVSS4.9AI score0.01766EPSS

Exploits30

Chainguard•added 2025/02/25 1:11 p.m.•134 views

GHSA-CR28-MCQ5-HJMG vulnerabilities

Vulnerabilities for packages: vim...

7.3AI score

Exploits0

Chainguard•added 2025/02/25 1:11 p.m.•15 views

GHSA-W4C8-8FHQ-883P vulnerabilities

Vulnerabilities for packages: vim...

7.3AI score

Exploits0

Rosalinux•added 2025/02/24 12:28 p.m.•16 views

Advisory ROSA-SA-2025-2720

Software: vim 8.0.1763 OS: ROSA Virtualization 3.0 packageevrstring: vim-8.0.1763 CVE-ID: CVE-2019-12735 BDU-ID: 2019-03251 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the getchar.c library of the Vim text editor is related to the lack of filtering of the "!source" command, which allows arbitrar...

9.8CVSS8.1AI score0.54077EPSS

Exploits6

Positive Technologies•added 2025/02/18 12:0 a.m.•2 views

PT-2025-7202 · Vim +5 · Vim +5

Name of the Vulnerable Software and Affected Versions: Vim versions prior to 9.1.1115 Description: The issue arises when redirecting the output of the :display command to a register that is being displayed, leading to a use-after-free. This occurs because Vim frees the register content before...

7.8CVSS4.7AI score0.02083EPSS

Exploits1References45

Chainguard•added 2024/08/22 10:15 p.m.•5 views

CVE-2024-43790 vulnerabilities

Vulnerabilities for packages: vim...

5.5CVSS6.9AI score0.0006EPSS

Exploits0

Positive Technologies•added 2024/08/01 12:0 a.m.•1 views

PT-2024-5608 · Vim +3 · Vim +3

Name of the Vulnerable Software and Affected Versions: Vim versions prior to 9.1.0648 Description: The issue arises from a double-free error in the dialog changed function when abandoning a buffer. If a user chooses to save a modified buffer without a name, Vim may create a new Untitled file...

5.5CVSS5.7AI score0.00124EPSS

Exploits0References48

Rosalinux•added 2023/10/22 6:2 a.m.•39 views

Advisory ROSA-SA-2023-2268

software: vim 9.0.1572 WASP: ROSA-CHROME packageevrstring: vim-9.0.1572-1.src.rpm CVE-ID: CVE-2023-0049 BDU-ID: 2023-00068 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the buildstlstrhl buffer.c function of the Vim text editor is related to an operation exceeding buffer boundaries in memory...

8.4CVSS8.7AI score0.00054EPSS

Exploits11

OSV•added 2023/10/05 8:30 p.m.•7 views

CVE-2023-5441 NULL Pointer Dereference in vim/vim

NULL Pointer Dereference in GitHub repository vim/vim prior to 20d161ace307e28690229b68584f2d84556f8960...

6.2CVSS6.7AI score0.0003EPSS

Exploits1References7

OSV•added 2023/09/04 1:47 p.m.•3 views

CVE-2023-4733 Use After Free in vim/vim

Use After Free in GitHub repository vim/vim prior to 9.0.1840...

7.3CVSS7.3AI score0.00047EPSS

Exploits1References9