Use-After-Free Vulnerability in Vim Command Line Text Editor
CVE-2025-55157

6.9MEDIUM

Key Information:

Vendor

Vim

Status
Vim
Vendor
CVE Published:
11 August 2025

What is CVE-2025-55157?

A vulnerability in the Vim command line text editor allows for memory corruption due to improper handling of memory references when processing nested tuples in Vim script. This flaw occurs specifically in versions ranging from 9.1.1231 to before 9.1.1400, where the function tuple_unref() can attempt to access freed memory, resulting in potential exploitation. Exploitation of this vulnerability requires direct user interaction, as it necessitates executing the vulnerable script within Vim. Version 9.1.1400 addresses this issue with a patch.

Affected Version(s)

vim >= 9.1.1231, < 9.1.1400

References

https://github.com/vim/vim/security/advisories/GHSA-3r4f-...
x_refsource_CONFIRM
https://github.com/vim/vim/commit/1307743697bbc46e1518abf...
x_refsource_MISC
https://github.com/vim/vim/releases/tag/v9.1.1400
x_refsource_MISC

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-55157 : Use-After-Free Vulnerability in Vim Command Line Text Editor