Vim
Moderate fix1 remedy
cpe:2.3:a:vim:vim:*:*:*:*:*:*:*
Moderate fix1 remedy
- < 9.2.0383
Vim netrw Plugin OS Command Injection Vulnerability
Vulnerability
Patched
An OS command injection vulnerability has been identified in the netrw standard plugin of Vim, affecting versions prior to 9.2.0383. The issue arises when netrw processes URLs using the sftp or file protocols. Attackers can exploit this vulnerability by crafting a URL that, when opened by the user, executes arbitrary shell commands with the privileges of the Vim process. This exploitation is possible because the temporary file names used by netrw can be manipulated to include shell metacharacters, which are then executed as commands.
Impact
Exploitation of this vulnerability allows for arbitrary shell command execution within the context of the Vim process.
Reproduction
The vulnerability can be reproduced by opening a file URL or an SFTP URL that has been crafted to include shell metacharacters in the filename. This can be done by appending commands to the URL in a way that exploits the temporary file naming process of the netrw plugin.
Remediation
Users can upgrade to Vim version 9.2.0383 or later to address this vulnerability.
Added: May 8, 2026, 11:27 PM
Updated: May 8, 2026, 11:27 PM
Vulnerability Rating
Custom Algorithm
spread
7.8impact
7.5exploitability
5.3remediation
7.7relevance
7.4threat
4.8urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.