CVE-2026-57454

UNKNOWN 0.0

Vim: Out-of-bounds Read with Text Properties

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Vim is an open source, command line text editor. From 9.2.0320 until 9.2.0679, a crafted undo or swap file can store a virtual-text property whose offset and length point outside the line's property data. When Vim restores or displays such a line it converts the offset into a pointer and reads the virtual text without bounds checking, causing an out-of-bounds read that can crash Vim or disclose adjacent heap memory. This vulnerability is fixed in 9.2.0679.

CWE	CWE-125
Vendor	vim
Product	vim
Published	Jun 25, 2026

Stay Ahead of the Next One

Get instant alerts for vim vim

Be the first to know when new unknown vulnerabilities affecting vim vim are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

vim / vim

>= 9.2.0320, < 9.2.0679

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/vim/vim/security/advisories/GHSA-ww8h-47xp-hp4w github.com: https://github.com/vim/vim/commit/b3faeecc976d3031d7c0675623516ec60c30f949 github.com: https://github.com/vim/vim/releases/tag/v9.2.0679