vim (SUSE:Linux Micro 6.0) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Micro 6.0 package vim, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (17)
CVE-2026-34714 — CVSS 9.2 (critical): Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default configuration, because…
CVE-2025-55158 — CVSS 8.8 (high): Vim is an open source, command line text editor. In versions from 9.1.1231 to before 9.1.1406, when processing nested tuples during Vim9…
CVE-2025-55157 — CVSS 8.8 (high): Vim is an open source, command line text editor. In versions from 9.1.1231 to before 9.1.1400, When processing nested tuples in Vim script…
CVE-2026-34982 — CVSS 8.2 (high): Vim is an open source, command line text editor. Prior to version 9.2.0276, a modeline sandbox bypass in Vim allows arbitrary OS command…
CVE-2026-33412 — CVSS 5.6 (medium): Vim is an open source, command line text editor. Prior to version 9.2.0202, a command injection vulnerability exists in Vim's glob()…
CVE-2026-26269 — CVSS 5.4 (medium): Vim is an open source, command line text editor. Prior to 9.1.2148, a stack buffer overflow vulnerability exists in Vim's NetBeans…
CVE-2024-43374 — CVSS 4.5 (medium): The UNIX editor Vim prior to version 9.1.0678 has a use-after-free error in argument list handling. When adding a new file to the argument…
CVE-2024-43790 — CVSS 4.5 (medium): Vim is an open source command line text editor. When performing a search and displaying the search-count message is disabled (:set shm+=S)…
CVE-2024-43802 — CVSS 4.5 (medium): Vim is an improved version of the unix vi text editor. When flushing the typeahead buffer, Vim moves the current position in the typeahead…
CVE-2024-45306 — CVSS 4.5 (medium): Vim is an open source, command line text editor. Patch v9.1.0038 optimized how the cursor position is calculated and removed a loop, that…
CVE-2026-28417 — CVSS 4.4 (medium): Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the `netrw`…
CVE-2025-24014 — CVSS 4.2 (medium): Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode (-s -e), Vim…
CVE-2025-22134 — CVSS 4.2 (medium): When switching to other buffers using the :all command and visual mode still being active, this may cause a heap-buffer overflow, because…
CVE-2025-53905 — CVSS 4.1 (medium): Vim is an open source, command line text editor. Prior to version 9.1.1552, a path traversal issue in Vim’s tar.vim plugin can allow…
CVE-2025-53906 — CVSS 4.1 (medium): Vim is an open source, command line text editor. Prior to version 9.1.1551, a path traversal issue in Vim’s zip.vim plugin can allow…
CVE-2024-47814 — CVSS 3.9 (low): Vim is an open source, command line text editor. A use-after-free was found in Vim < 9.1.0764. When closing a buffer (visible in a window)…
CVE-2025-1215 — CVSS 2.8 (low): A vulnerability classified as problematic was found in vim up to 9.1.1096. This vulnerability affects unknown code of the file src/main.c…