Zero Day MonitorZDM

← Back to list

8.2

CVE-2026-34982PATCHED

vim · vim

Vim modeline bypass via various options affects Vim < 9.2.0276

Description

Vim is an open source, command line text editor. Prior to version 9.2.0276, a modeline sandbox bypass in Vim allows arbitrary OS command execution when a user opens a crafted file. The `complete`, `guitabtooltip` and `printheader` options are missing the `P_MLE` flag, allowing a modeline to be executed. Additionally, the `mapset()` function lacks a `check_secure()` call, allowing it to be abused from sandboxed expressions. Commit 9.2.0276 fixes the issue.

Affected Products

Vendor	Product	Versions
vim	vim	< 9.2.0276

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor	Product	Source	Confidence
ibm	qradar siem	cert_advisory	90%

References

https://github.com/vim/vim/security/advisories/GHSA-8h6p-m6gr-mpw9(x_refsource_CONFIRM)
https://github.com/vim/vim/commit/75661a66a1db1e1f3f1245c615(x_refsource_MISC)
https://github.com/vim/vim/releases/tag/v9.2.0276(x_refsource_MISC)

Related News (5 articles)

Tier B

BSI Advisories4d ago

[NEU] [hoch] IBM QRadar SIEM: Mehrere Schwachstellen

→ No new info (linked only)

Tier A

Microsoft MSRC52d ago

CVE-2026-34982 Vim modeline bypass via various options affects Vim < 9.2.0276

→ No new info (linked only)

Tier C

VulDB54d ago

CVE-2026-34982 | vim up to 9.2.275 Command Line mapset os command injection (GHSA-8h6p-m6gr-mpw9)

→ No new info (linked only)

Tier B

BSI Advisories59d ago

[NEU] [hoch] vim: Schwachstelle ermöglicht Codeausführung

→ No new info (linked only)

Tier C

oss-security59d ago

Re: [vim-security] Vim modeline bypass via various options affects Vim < 9.2.0276

→ No new info (linked only)

CVSS 3.18.2 HIGH

VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

CISA KEV❌ No

Actively exploited❌ No

Patch available

9.2.276

CWECWE-78

PublishedApr 6, 2026

Last enriched54d agov2

Trending Score31

Source articles5

Independent4

Info Completeness9/14

Missing: epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

MEDIUMPRE-CVEEXP

Arbitrary Code Execution via Python Omni-Completion in Vim < 9.2.561

MEDIUMCVE-2026-33412

Vim is an open source, command line text editor. Prior to version 9.2.0202, a command injection vulnerability exists in Vim's glob() function on Unix-like systems. By including a newline character (\n

LOWCVE-2026-46483EXP

Vim: Command injection in tar#Vimuntar via missing shellescape {special} flag

MEDIUMCVE-2026-45130EXP

Vim: Heap Buffer Overflow in spell file loading

CRITICALCVE-2026-44656EXP

Vim: OS Command Injection via 'path' completion

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 6, 2026

Discovered by ZDM

Apr 6, 2026

Updated: description, severity, patchAvailable

Apr 6, 2026

Patch Available

Apr 7, 2026

Version History

v2

Last enriched 54d ago

v2Tier C54d ago

Updated severity to CRITICAL, added new description details, and specified the fixed version as 9.2.276.

descriptionseveritypatchAvailable

via VulDB

v154d ago

Initial creation