PT-2025-29686 · Vim+10 · Vim+11

Ax

·

Published

2025-07-15

·

Updated

2026-04-08

·

CVE-2025-53906

CVSS v3.1

4.1

Medium

VectorAV:L/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:L
Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.1.1551
Description Vim, an open-source command-line text editor, contains a path traversal issue within its zip.vim plugin. This issue allows overwriting of arbitrary files when opening specially crafted zip archives. Exploitation requires direct user interaction, but successful exploitation could lead to overwriting sensitive files or placing executable code in privileged locations, depending on the permissions of the process editing the archive. A victim editing such a file with Vim may reveal the filename and content, potentially indicating malicious activity. Successful exploitation could result in the ability to execute arbitrary commands on the underlying operating system.
Recommendations Update Vim to version 9.1.1551 or later.

Exploit

Fix

Path traversal

Weakness Enumeration

CWE-22

Related Identifiers

ALSA-2025:17715
ALSA-2025:17742
ALSA-2025:17913
ALSA-2025:20945
ALSA-2025:21015
AZL-65333
AZL-65516
BDU:2025-11731
CESA-2025_17715
CVE-2025-53906
ECHO-00DD-25A0-CD71
GHSA-R2FW-9CW4-MJ86
INFSA-2025_17715
INFSA-2025_17742
INFSA-2025_20945
MGASA-2025-0226
OESA-2025-1943
OESA-2025-1944
OESA-2025-1945
OESA-2025-1983
OESA-2025-1984
OESA-2025-1985
OPENSUSE-SU-2026:20403-1
RHSA-2025:20945
RHSA-2025:21015
RHSA-2025_17715
RHSA-2025_17742
RHSA-2025_20945
SUSE-SU-2025:03240-1
SUSE-SU-2025:03299-1
SUSE-SU-2025:03300-1
SUSE-SU-2025:20696-1
SUSE-SU-2025:20857-1
SUSE-SU-2025_03299-1
SUSE-SU-2025_03300-1
SUSE-SU-2026:0910-1
SUSE-SU-2026:1051-1
SUSE-SU-2026:1095-1
SUSE-SU-2026:20717-1
SUSE-SU-2026:20738-1
SUSE-SU-2026:20759-1
SUSE-SU-2026:20916-1
USN-7748-1

Affected Products

Almalinux
Centos
Debian
Linuxmint
Apple Macos
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Vim
Zip.Vim