Security Advisory

CVE-2026-35177

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-06 17:54:42

Last updated 2026-04-07 14:05:50

Assigner GitHub_M

State PUBLISHED

Description

Vim is an open source, command line text editor. Prior to 9.2.0280, a path traversal bypass in Vims zip.vim plugin allows overwriting of arbitrary files when opening specially crafted zip archives, circumventing the previous fix for CVE-2025-53906. This vulnerability is fixed in 9.2.0280.

← Browse all CVEs View on cve.org ↗