CVE-2026-44656: Vim: OS Command Injection via 'path' completion
Overview
- Severity
- N/A
- Exploit Status
- Not Exploited
- Patch Tuesday
- 2026-May
- Released
- 2026-05-10
- Last Updated
- 2026-05-13
- EPSS Score
- 0.92% (percentile: 55.5%)
Detection & Weaponization (1 sources)
Maturity: Exploit
- GitHub PoC: 1 repositories
Affected Products (1)
Open Source Software
- azl3 vim 9.2.0392-1 on Azure Linux 3.0
Revision History
- 2026-05-10: Information published.
- 2026-05-11: Information published.
- 2026-05-13: Information published.