CVE-2026-35177 | vim up to 9.2.0279 zip.vim Plugin path traversal (GHSA-jc86-w7vm-8p24)

Inserito da Angelo Barbosa | Apr 6, 2026 | CVE

A vulnerability categorized as critical has been discovered in vim up to 9.2.0279. The affected element is an unknown function of the component zip.vim Plugin. Executing a manipulation can lead to path traversal.

This vulnerability is handled as CVE-2026-35177. The attack can be executed remotely. There is not any exploit available.

It is advisable to upgrade the affected component.

CVE-2026-35177 | vim up to 9.2.0279 zip.vim Plugin path traversal (GHSA-jc86-w7vm-8p24)

Post correlati

CVE-2022-49034 | Linux Kernel up to 6.12.1 cpuinfo cpu_max_bits_warn stack-based overflow

CVE-2023-50254 | linuxdeepin developer-center up to 6.0.6 docx Document path traversal (GHSA-q9jr-726g-9495)

CVE-2024-6353 | Wallet for WooCommerce Plugin up to 1.5.4 on WordPress search[value] sql injection

CVE-2024-30250 | KindSpells Astro-Shield data authenticity