anonhaven
Ad

CVE-2026-28418

MEDIUM CVSS 3.1: 4.4 EPSS 0.00%
Updated Feb 28, 2026
Vim
Parameter Value
CVSS 4.4 (MEDIUM)
Type CWE-122 (Heap-based Buffer Overflow), CWE-125 (Out-of-bounds Read)
Vendor Vim
Public PoC No

Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-style tags file parsing logic. When processing a malformed tags file, Vim can be tricked into reading up to 7 bytes beyond the allocated memory boundary.

Version 9.2.0074 fixes the issue.

Attack Parameters

Attack Vector
Local
Requires local access
Attack Complexity
Low
Easy to exploit
Privileges Required
None
No privileges needed
User Interaction
Required
User action required

Impact Assessment

Confidentiality
Low
Partial data leak
Integrity
Low
Partial data modification
Availability
None
No disruption

CVSS Vector v3.1

Weakness Type (CWE)

CWE-122 Heap-based Buffer Overflow
CWE-125 Out-of-bounds Read

References 4

https://github.com/vim/vim/commit/f6a7f469a9c0d09e84cd6cb
security-advisories@github.com
https://github.com/vim/vim/releases/tag/v9.2.0074
security-advisories@github.com
https://github.com/vim/vim/security/advisories/GHSA-h4mf-vg97-hj8j
security-advisories@github.com
http://www.openwall.com/lists/oss-security/2026/02/27/7
af854a3a-2127-422b-91ae-364da2661108
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-33412

Vim

7.3

CVE-2026-28422

Vim

2.2

CVE-2026-28421

Vim

5.3

CVE-2026-28420

Vim

4.4

CVE-2026-28419

Vim

5.3