RHSA-2026:28050HighCVSS 8.2

Red Hat Security Advisory: vim security update

Published
June 22, 2026
Last Modified
June 25, 2026

🔗 CVE IDs covered (4)

📋 Description

CVE-2026-34982 — vim: arbitrary command execution via modeline sandbox bypass CVE-2026-35177 — vim: zip.vim: Vim zip.vim plugin: Arbitrary file overwrite via path traversal bypass CVE-2026-41411 — vim: Vim: Command injection allows arbitrary code execution via malicious tag files CVE-2026-46483 — vim: command injection when decompressing .tgz archives

🔗 References (7)