Critical severity9.2NVD Advisory· Published Mar 30, 2026· Updated Apr 3, 2026

CVE-2026-34714

Description

Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default configuration, because %{expr} injection occurs with tabpanel lacking P_MLE.

Affected products

Vim/Vim
cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*
Range: <9.2.0272

Patches

664701eb7576

https://github.com/vim/vimvia nvd-ref

commit

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

github.com/vim/vim/commit/664701eb7576edb7c7c7d9f2d600815ec1f43459nvdPatch
github.com/vim/vim/security/advisories/GHSA-2gmj-rpqf-pxvhnvdVendor Advisory
www.openwall.com/lists/oss-security/2026/03/30/3nvdMailing ListThird Party Advisory
www.openwall.com/lists/oss-security/2026/04/02/4nvdIssue TrackingMailing List
github.com/vim/vim/releases/tag/v9.2.0272nvdRelease Notes
www.openwall.com/lists/oss-security/2026/04/02/5nvd
www.openwall.com/lists/oss-security/2026/04/03/6nvd

News mentions

No linked articles in our index yet.

cvss	0.598
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000