CVE-2025-27423

Name of the Vulnerable Software and Affected Versions Vim versions 9.1.0858 through 9.1.1163

Description Vim is an open source, command line text editor that is distributed with the tar.vim plugin. This plugin allows easy editing and viewing of compressed or uncompressed tar files. However, starting with version 9.1.0858, the tar.vim plugin uses the ":read" ex command line to append below the cursor position without sanitizing the input, which can be taken literally from the tar archive. This allows for the execution of shell commands via specially crafted tar archives, depending on the shell being used. The issue has been fixed as of Vim patch v9.1.1164.

Recommendations Update to version 9.1.1164 to stay secure. Avoid opening untrusted TAR files. Monitor for unusual events. As a temporary workaround, consider disabling the tar.vim plugin until a patch is available.