Stack Out-of-Bounds Write in Vim Command Line Text Editor
CVE-2026-55693

5.7MEDIUM

Key Information:

Vendor

Vim

Status
Vim
Vendor
CVE Published:
25 June 2026

What is CVE-2026-55693?

Vim, the open-source command-line text editor, has a vulnerability in the tree_count_words() function that allows for a stack out-of-bounds write. This can occur when processing a crafted .spl/.sug file pair during spell suggestion, leading the depth counter to exceed the bounds of fixed-size stack arrays. This issue can cause corruption of the call frame and result in crashes, threatening the stability of the editor. An upgrade to version 9.2.0653 is necessary to mitigate this risk.

Affected Version(s)

vim < 9.2.0653

References

https://github.com/vim/vim/security/advisories/GHSA-wgh4-...
x_refsource_CONFIRM
https://github.com/vim/vim/commit/a80874d9b84a01040e3d1ae...
x_refsource_MISC
https://github.com/vim/vim/releases/tag/v9.2.0653
x_refsource_MISC

CVSS V4

Score:
5.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.