Uncontrolled Search Path Vulnerability in Vim for Windows
CVE-2025-66476

7.8HIGH

Key Information:

Vendor

Vim

Status
Vim
Vendor
CVE Published:
2 December 2025

What is CVE-2025-66476?

Vim, the open-source command line text editor, contains a vulnerability that allows malicious executables in the current working directory to be executed inadvertently. This occurs due to how Vim resolves external commands while operating in a Windows environment using cmd.exe. Specifically, when invoking commands like grep or executing filters, Vim prioritizes the current directory over system paths. As a result, if a user is editing a file in a directory containing a malicious executable, Vim may execute this file instead of the intended command, posing significant security risks for users.

Affected Version(s)

vim < 9.1.1947

References

https://github.com/vim/vim/security/advisories/GHSA-g77q-...
x_refsource_CONFIRM
https://github.com/vim/vim/commit/083ec6d9a3b7b09006e0ce6...
x_refsource_MISC
https://github.com/vim/vim/releases/tag/v9.1.1947
x_refsource_MISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.