Details:
Vim (Vi IMproved) is an updated and improved version of the vi editor.
Security Fix(es):
vim: Vim: Arbitrary code execution via 'helpfile' option processing (CVE-2026-25749)
vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin (CVE-2026-28417)
vim: Vim: Denial of service and information disclosure via crafted swap file (CVE-2026-28421)
vim: Vim: Arbitrary code execution via command injection in glob() function (CVE-2026-33412)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
2:8.2.2637-20.el9_4.22:8.2.2637-20.el9_4.22:8.2.2637-20.el9_4.22:8.2.2637-20.el9_4.22:8.2.2637-20.el9_4.22:8.2.2637-20.el9_4.22:8.2.2637-20.el9_4.22:8.2.2637-20.el9_4.22:8.2.2637-20.el9_4.22:8.2.2637-20.el9_4.2Exploitability
AV:LAC:LPR:LUI:RScope
S:UImpact
C:HI:HA:H7.3/CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H