Vim 9.1.1784 < 9.2.0678 Command Injection (GHSA-x5fg-h5w9-9frf)

high Nessus Plugin ID 324732

Synopsis

A text editor installed on the remote host is affected by a vulnerability.

Description

The version of Vim installed on the remote host is between 9.1.1784 and 9.2.0678 (exclusive). It is, therefore, affected by a vulnerability.

- When the bundled zip plugin autoload/zip.vim falls back to PowerShell to browse, read, extract, update or delete entries in a zip archive, it builds the PowerShell command by inserting archive entry names that are quoted only for the shell, not for PowerShell. A crafted entry name can break out of the intended string context and cause PowerShell to execute arbitrary commands with the privileges of the user running Vim, triggered by opening, viewing or extracting the archive. (CVE-2026-57453)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to Vim version 9.2.0678 or later.

See Also

https://github.com/vim/vim/security/advisories/GHSA-x5fg-h5w9-9frf

Plugin Details

Severity: High

ID: 324732

File Name: vim_9_2_0678.nasl

Version: 1.2

Type: Local

Agent: windows, macosx, unix

Family: Misc.

Published: 7/2/2026

Updated: 7/3/2026

Configuration: Enable thorough checks (optional)

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.5

Percentile: 57.55

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:P

CVSS Score Source: CVE-2026-57453

CVSS v3

Risk Factor: High

Base Score: 7.3

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L

Vulnerability Information

CPE: cpe:/a:vim:vim

Required KB Items: installed_sw/Vim

Patch Publication Date: 6/25/2026

Vulnerability Publication Date: 6/25/2026

Reference Information

CVE: CVE-2026-57453

IAVA: 2026-A-0630