Buffer Overflow in Vim's Terminal Functionality Affects Open Source Editor
CVE-2026-52859

6.9MEDIUM

Key Information:

Vendor

Vim

Status
Vendor
CVE Published:
11 June 2026

What is CVE-2026-52859?

Vim, a widely used open source command line text editor, contains a buffer overflow vulnerability in its terminal functionality due to improper handling of screen cell characters. Specifically, the update_snapshot() function in src/terminal.c fails to enforce a boundary check while copying the visible terminal screen to the scrollback buffer. This oversight can lead to crashes as the loop traverses an array without a terminating NUL, especially when the number of characters exceeds the predefined maximum. Attackers can exploit this vulnerability without relying on Vim scripting, merely by rendering specific output within a terminal window. The issue was addressed in version 9.2.0565, highlighting the importance of keeping software up to date to mitigate such security risks.

Affected Version(s)

vim < 9.2.0565

References

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.