CVE-2026-47167 | Vim up to 9.2.495 Pattern cucumber.vim stepmatch code injection (GHSA-4473-94jm-w5x9)

Inserito da Angelo Barbosa | Giu 11, 2026 | CVE

A vulnerability classified as critical was found in Vim up to 9.2.495. This impacts the function stepmatch of the file runtime/ftplugin/cucumber.vim of the component Pattern Handler. Such manipulation leads to code injection.

This vulnerability is uniquely identified as CVE-2026-47167. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2026-47167 | Vim up to 9.2.495 Pattern cucumber.vim stepmatch code injection (GHSA-4473-94jm-w5x9)

Post correlati

CVE-2026-43860 | mutt up to 2.3.1 IMAP hash_passwd off-by-one

CVE-2024-13083 | PHPGurukul Land Record System 1.0 /admin/admin-profile.php Admin Name cross site scripting

CVE-2026-6605 | modelscope agentscope up to 1.0.18 Internal Service _common.py _get_bytes_from_web_url server-side request forgery

CVE-2025-38346 | Linux Kernel up to 6.15.3 ftrace ftrace_mod_get_kallsym memory corruption