CVE-2026-39881

EUVD-2026-20622
Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans interface allows a malicious netbeans server to execute arbitrary Ex commands when Vim connects to it, via unsanitized strings in the defineAnnoType and specialKeys protocol messages. This vulnerability is fixed in 9.2.0316.
Code Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 MEDIUM
LOCAL
HIGH
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
vimvim
𝑥
< 9.2.0316
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
vim
bookworm
vulnerable
bullseye
vulnerable
bullseye (security)
vulnerable
forky
2:9.2.0461-1
fixed
sid
2:9.2.0461-1
fixed
trixie
vulnerable
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
vim
bionic
Fixed 2:8.0.1453-1ubuntu1.13+esm16
released
focal
Fixed 2:8.1.2269-1ubuntu5.32+esm4
released
jammy
Fixed 2:8.2.3995-1ubuntu2.28
released
noble
Fixed 2:9.1.0016-1ubuntu7.12
released
questing
Fixed 2:9.1.0967-1ubuntu6.3
released
resolute
Fixed 2:9.1.2141-1ubuntu4.1
released
trusty
Fixed 2:7.4.052-1ubuntu3.1+esm25
released
xenial
Fixed 2:7.4.1689-3ubuntu1.5+esm31
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
vim
suse enterprise desktop 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise sap 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise server 15 SP7
9.2.0398-150500.20.49.1
fixed
vim-data
suse enterprise desktop 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise sap 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise server 15 SP7
9.2.0398-150500.20.49.1
fixed
vim-data-common
suse enterprise desktop 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise sap 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise server 15 SP7
9.2.0398-150500.20.49.1
fixed
vim-small
suse enterprise desktop 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise sap 15 SP7
9.2.0398-150500.20.49.1
fixed
suse enterprise server 15 SP7
9.2.0398-150500.20.49.1
fixed
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://github.com/vim/vim/commit/7ab76a86048ed492374ac6b19
https://github.com/vim/vim/releases/tag/v9.2.0316
https://github.com/vim/vim/security/advisories/GHSA-mr87-rhgv-7pw6