CVE-2026-33412
MED 5.6Vim is an open source, command line text editor. Prior to version 9.2.0202, a command injection vulnerability exists in Vim's glob() function on Unix-like systems. By including a newline character (\n) in a pattern passed to glob(), an attacker may be able to execute arbitrary shell commands. This vulnerability depends on the user's 'shell' setting. This issue has been patched in version 9.2.0202.
Affected Applications in Environment
14
Vim
v9.2.0000
1 device
vim
v2:8.2.3995-1ubuntu2.26
26 devices
vim
v2:9.1.0016-1ubuntu7.10
49 devices
vim
v2:7.4.1689-3ubuntu1.5
3 devices
vim
v2:8.1.2269-1ubuntu5.32
11 devices
vim
v2:8.2.2434-3+deb11u3
11 devices
vim
v2:9.0.1378-2+deb12u2
17 devices
vim
v2:9.1.1230-2
8 devices
vim
v2:7.4.1689-3ubuntu1.5+esm29
1 device
vim
v2:9.1.0016-1ubuntu7.9
1 device
vim
v2:9.1.0967-1ubuntu4.1
1 device
vim
v2:8.0.1453-1ubuntu1.13
1 device
vim
v2:7.4.052-1ubuntu3.1
1 device
vim
v2:8.1.0875-5+deb10u6
1 device
Affected Devices
132
BSTEVENS
Windows
acmedns
Linux
aggietower
Linux
ah-ots
Linux
auto-score
Linux
awep1
Linux
bennett-HP-Z2-SFF-G4-Workstation
Linux
blakeutil
Linux
bloodhound
Linux
capahab
Linux
cceredcapdb
Linux
cceredcapweb
Linux
chat
Linux
csf
Linux
dispatch
Linux
dist
Linux
e911-provision
Linux
educweb
Linux
elend
Linux
emby
Linux
ezidadmin
Linux
finch
Linux
flexnet
Linux
flo-rida
Linux
fw
Linux
gravekeeper
Linux
gul4.usu.edu
Linux
hackedpasswords
Linux
hotcheeto
Linux
infosec-grafana
Linux
intune-mcc1
Linux
intune-mcc3
Linux
iperf
Linux
itfinance
Linux
itls-wp
Linux
jed
Linux
kcm.usu.edu
Linux
kena-utility
Linux
kmlab
Linux
ldap-lb01
Linux
ldap-lb02
Linux
librenms
Linux
librenmsdb
Linux
log
Linux
lumbermill
Linux
mail
Linux
minemeld
Linux
mirror3
Linux
miscdata
Linux
miscnet
Linux
monitor01
Linux
monitor02
Linux
my1
Linux
my2
Linux
mysql02
Linux
netbox
Linux
nt
Linux
omekanew
Linux
portscan01
Linux
portscan02
Linux
privatebin
Linux
promnet
Linux
rcbd
Linux
rcdb-dev
Linux
redcapweb
Linux
refraction
Linux
s2backups
Linux
seaweed
Linux
second-thrifted-tractor
Linux
sectap1
Linux
sentry
Linux
server1mathusuedu
Linux
server2math
Linux
soc
Linux
solar
Linux
starfleetpad
Linux
steesh
Linux
storm
Linux
strat
Linux
svn.usu.edu
Linux
sympa.ser321.usu.edu
Linux
sys-serv-l-301-data
Linux
thegrid
Linux
thnotes
Linux
tsutil.it.usu.edu
Linux
vinmathusuedu
Linux
vrtour
Linux
web-lb-stage.usu.edu
Linux
web-lb01-redirect.usu.edu
Linux
web-lb01.usu.edu
Linux
web-lb02-redirect.usu.edu
Linux
web-lb02.usu.edu
Linux
web-lb03-redirect.usu.edu
Linux
web-lb03.usu.edu
Linux
web-lb04.usu.edu
Linux
web02.usu.edu
Linux
web03.usu.edu
Linux
web04a
Linux
web05
Linux
web06
Linux
web08.usu.edu
Linux
web09.usu.edu
Linux
web10
Linux
web10-awhc
Linux
web10-awhc
Linux
web11.usu.edu
Linux
web12.usu.edu
Linux
web13.usu.edu
Linux
web14.usu.edu
Linux
web18
Linux
web19.usu.edu
Linux
web20
Linux
web21
Linux
web22
Linux
web23
Linux
web24
Linux
web25
Linux
web27.usu.edu
Linux
web28
Linux
web29.usu.edu
Linux
web30.usu.edu
Linux
web31.usu.edu
Linux
web32.usu.edu
Linux
web33.usu.edu
Linux
web34.usu.edu
Linux
web35.usu.edu
Linux
web36.usu.edu
Linux
web37.usu.edu
Linux
webs.usu.edu
Linux
webtools
Linux
wpad
Linux
yasls
Linux