216.73.217.98

CVE-2026-47162

· Published 11/06/2026 21:16 · Modified 11/06/2026 20:56 · Author: The MITRE Corporation

Labels: CVE-2026-47162 2026-06-11CVE-2026-47162CWE-74[email protected]

Essential information

Published
11/06/2026 21:16
Modified
11/06/2026 20:56
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
8.8 HIGH (v3.1) 7.3 HIGH (v4.0)
CISA KEV
No
CWE
CWE-74
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS metrics

Description

Vim is an open source, command line text editor. Prior to version 9.2.0495, a Vimscript code injection vulnerability exists in s:NetrwBookHistSave() in the netrw plugin (runtime/pack/dist/opt/netrw/autoload/netrw.vim) when serializing browsed directory paths to the history file ~/.vim/.netrwhist. A directory name derived from the filesystem is interpolated into a single-quoted Vimscript string literal without escaping embedded single quotes, allowing a crafted directory name to break out of the string context and execute arbitrary Vimscript, including shell commands via system() and :!, the next time the history file is sourced. This issue has been patched in version 9.2.0495.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
vim / vim cpe:2.3:a:vim:vim:<9.2.0495:*:*:*:*:*:*:*

References