CVE-2026-34982 — OS Command Injection in VIM
Severity
8.2HIGHNVD
EPSS
0.0%
top 94.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 6
Latest updateApr 13
Description
Vim is an open source, command line text editor. Prior to version 9.2.0276, a modeline sandbox bypass in Vim allows arbitrary OS command execution when a user opens a crafted file. The `complete`, `guitabtooltip` and `printheader` options are missing the `P_MLE` flag, allowing a modeline to be executed. Additionally, the `mapset()` function lacks a `check_secure()` call, allowing it to be abused from sandboxed expressions. Commit 9.2.0276 fixes the issue.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:NExploitability: 1.8 | Impact: 5.8
Affected Packages4 packages
🔴Vulnerability Details
1📋Vendor Advisories
4Debian▶
CVE-2026-34982: vim - Vim is an open source, command line text editor. Prior to version 9.2.0276, a mo...↗2026
🕵️Threat Intelligence
28Hackernews
▶