CVE-2025-53905

CVSS v3.1

4.1

Medium

Vector

AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.1.1552

Description Vim is an open source, command line text editor. A path traversal issue exists in Vim’s tar.vim plugin prior to version 9.1.1552, potentially allowing overwriting of arbitrary files when opening specially crafted tar archives. Exploitation requires direct user interaction, but successful exploitation could lead to overwriting sensitive files or placing executable code in privileged locations, depending on the permissions of the process editing the archive. Editing such a file in Vim reveals the filename and content, potentially alerting a careful user. Successful exploitation could result in the ability to execute arbitrary commands on the underlying operating system.

Recommendations Update Vim to version 9.1.1552 or later.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

ALSA-2025:17715

ALSA-2025:17742

ALSA-2025:17913

ALSA-2025:20945

ALSA-2025:21015

AZL-65330

AZL-65513

BDU:2025-11730

CESA-2025_17715

CVE-2025-53905

ECHO-4D91-60A7-208C

GHSA-74V4-F3X9-PPVR

INFSA-2025_17715

INFSA-2025_17742

INFSA-2025_20945

MGASA-2025-0226

OESA-2025-1943

OESA-2025-1944

OESA-2025-1945

OESA-2025-1983

OESA-2025-1984

OESA-2025-1985

RHSA-2025:17644

RHSA-2025:17715

RHSA-2025:17742

RHSA-2025:17913

RHSA-2025:20945

RHSA-2025:21015

RHSA-2025_17715

RHSA-2025_17742

RHSA-2025_20945

SUSE-SU-2025:03240-1

SUSE-SU-2025:03299-1

SUSE-SU-2025:03300-1

SUSE-SU-2025:20696-1

SUSE-SU-2025:20857-1

SUSE-SU-2025_03299-1

SUSE-SU-2025_03300-1

USN-7748-1

Affected Products

Almalinux

Centos

Debian

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Vim

Tar.Vim

CVE-2025-53905

Weakness Enumeration

Related Identifiers

Affected Products

References · 102