CVE-2026-34714

Public on 2026-03-30

Modified on 2026-04-01

Description

Vim before 9.2.0272 allows code execution that happens immediately upo ...

NOTE: https://github.com/vim/vim/security/advisories/GHSA-2gmj-rpqf-pxvh
NOTE: Fixed by: https://github.com/vim/vim/commit/664701eb7576edb7c7c7d9f2d600815ec1f43459 (v9.2.0272)

Severity

Important

See what this means

CVSS v3 Base Score

8.6

See breakdown

Affected Packages

Platform	Package	Release Date	Advisory	Status
Amazon Linux 2 - Core	vim			Not Affected
Amazon Linux 2023	vim			Pending Fix

CVSS Scores

	Score Type	Score	Vector
Amazon Linux	CVSSv3	8.6	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

References

FAQs regarding Amazon Linux ALAS/CVE Severity Red Hat: CVE-2026-34714 Mitre: CVE-2026-34714