CVE-2026-39881

EUVD-2026-20622
Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans interface allows a malicious netbeans server to execute arbitrary Ex commands when Vim connects to it, via unsanitized strings in the defineAnnoType and specialKeys protocol messages. This vulnerability is fixed in 9.2.0316.
Code Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 MEDIUM
LOCAL
HIGH
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
Affected Products (NVD)
VendorProductVersion
vimvim
𝑥
< 9.2.0316
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
vim
bookworm
vulnerable
bullseye
vulnerable
bullseye (security)
vulnerable
forky
2:9.2.0524-1
fixed
sid
2:9.2.0524-1
fixed
trixie
vulnerable
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
vim
bionic
Fixed 2:8.0.1453-1ubuntu1.13+esm16
released
focal
Fixed 2:8.1.2269-1ubuntu5.32+esm4
released
jammy
Fixed 2:8.2.3995-1ubuntu2.28
released
noble
Fixed 2:9.1.0016-1ubuntu7.12
released
questing
Fixed 2:9.1.0967-1ubuntu6.3
released
resolute
Fixed 2:9.1.2141-1ubuntu4.1
released
trusty
Fixed 2:7.4.052-1ubuntu3.1+esm25
released
xenial
Fixed 2:7.4.1689-3ubuntu1.5+esm31
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
gvim
suse enterprise server 15 SP4
9.2.0530-150000.5.94.1
fixed
vim
suse enterprise desktop 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise sap 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise server 15 SP4
9.2.0530-150000.5.94.1
fixed
suse enterprise server 15 SP7
9.2.0398-150500.20.49.1
fixed
vim-data
suse enterprise desktop 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise sap 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise server 15 SP4
9.2.0530-150000.5.94.1
fixed
suse enterprise server 15 SP7
9.2.0398-150500.20.49.1
fixed
vim-data-common
suse enterprise desktop 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise sap 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise server 15 SP4
9.2.0530-150000.5.94.1
fixed
suse enterprise server 15 SP7
9.2.0398-150500.20.49.1
fixed
vim-small
suse enterprise desktop 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise sap 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise server 15 SP4
9.2.0530-150000.5.94.1
fixed
suse enterprise server 15 SP7
9.2.0398-150500.20.49.1
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
vim-common
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
vim-data
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
vim-debuginfo
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
vim-debugsource
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
vim-default-editor
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
vim-enhanced
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
vim-enhanced-debuginfo
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
vim-filesystem
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
vim-minimal
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
vim-minimal-debuginfo
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
xxd
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
xxd-debuginfo
Amazon Linux 2023
2:9.2.597-1.amzn2023.0.1
fixed
Azure Linux logo
Azure Linux Releases
Azure Package
Release
vim
Azure Linux 3.0
0:9.2.0323-1.azl3
fixed