Threat Intel

v0.1

← CVEs

CVE-2026-32249

MED 5.3
Published
2026-03-12
Last Modified
2026-03-18
Affected Apps
13
Affected Devices
131
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex compiler, when encountering a collection containing a combining character as the endpoint of a character range (e.g. [0-0\u05bb]), incorrectly emits the composing bytes of that character as separate NFA states. This corrupts the NFA postfix stack, resulting in NFA_START_COLL having a NULL out1 pointer. When nfa_max_width() subsequently traverses the compiled NFA to estimate match width for the look-behind assertion, it dereferences state->out1->out without a NULL check, causing a segmentation fault. This vulnerability is fixed in 9.2.0137.
Affected Applications in Environment 13
vim v2:8.2.3995-1ubuntu2.26
26 devices
vim v2:9.1.0016-1ubuntu7.10
49 devices
vim v2:7.4.1689-3ubuntu1.5
3 devices
vim v2:8.1.2269-1ubuntu5.32
11 devices
vim v2:8.2.2434-3+deb11u3
11 devices
vim v2:9.0.1378-2+deb12u2
17 devices
vim v2:9.1.1230-2
8 devices
vim v2:7.4.1689-3ubuntu1.5+esm29
1 device
vim v2:9.1.0016-1ubuntu7.9
1 device
vim v2:9.1.0967-1ubuntu4.1
1 device
vim v2:8.0.1453-1ubuntu1.13
1 device
vim v2:7.4.052-1ubuntu3.1
1 device
vim v2:8.1.0875-5+deb10u6
1 device
Affected Devices 131
acmedns Linux aggietower Linux ah-ots Linux auto-score Linux awep1 Linux bennett-HP-Z2-SFF-G4-Workstation Linux blakeutil Linux bloodhound Linux capahab Linux cceredcapdb Linux cceredcapweb Linux chat Linux csf Linux dispatch Linux dist Linux e911-provision Linux educweb Linux elend Linux emby Linux ezidadmin Linux finch Linux flexnet Linux flo-rida Linux fw Linux gravekeeper Linux gul4.usu.edu Linux hackedpasswords Linux hotcheeto Linux infosec-grafana Linux intune-mcc1 Linux intune-mcc3 Linux iperf Linux itfinance Linux itls-wp Linux jed Linux kcm.usu.edu Linux kena-utility Linux kmlab Linux ldap-lb01 Linux ldap-lb02 Linux librenms Linux librenmsdb Linux log Linux lumbermill Linux mail Linux minemeld Linux mirror3 Linux miscdata Linux miscnet Linux monitor01 Linux monitor02 Linux my1 Linux my2 Linux mysql02 Linux netbox Linux nt Linux omekanew Linux portscan01 Linux portscan02 Linux privatebin Linux promnet Linux rcbd Linux rcdb-dev Linux redcapweb Linux refraction Linux s2backups Linux seaweed Linux second-thrifted-tractor Linux sectap1 Linux sentry Linux server1mathusuedu Linux server2math Linux soc Linux solar Linux starfleetpad Linux steesh Linux storm Linux strat Linux svn.usu.edu Linux sympa.ser321.usu.edu Linux sys-serv-l-301-data Linux thegrid Linux thnotes Linux tsutil.it.usu.edu Linux vinmathusuedu Linux vrtour Linux web-lb-stage.usu.edu Linux web-lb01-redirect.usu.edu Linux web-lb01.usu.edu Linux web-lb02-redirect.usu.edu Linux web-lb02.usu.edu Linux web-lb03-redirect.usu.edu Linux web-lb03.usu.edu Linux web-lb04.usu.edu Linux web02.usu.edu Linux web03.usu.edu Linux web04a Linux web05 Linux web06 Linux web08.usu.edu Linux web09.usu.edu Linux web10 Linux web10-awhc Linux web10-awhc Linux web11.usu.edu Linux web12.usu.edu Linux web13.usu.edu Linux web14.usu.edu Linux web18 Linux web19.usu.edu Linux web20 Linux web21 Linux web22 Linux web23 Linux web24 Linux web25 Linux web27.usu.edu Linux web28 Linux web29.usu.edu Linux web30.usu.edu Linux web31.usu.edu Linux web32.usu.edu Linux web33.usu.edu Linux web34.usu.edu Linux web35.usu.edu Linux web36.usu.edu Linux web37.usu.edu Linux webs.usu.edu Linux webtools Linux wpad Linux yasls Linux
References 3