Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.28 bug fix and security update
Details
CVSS v3
4.4
NVD published
2026-02-27 22:16:24
EPSS
<0.1% probability · 1.8th percentile — 2026-04-17
Affected versions
cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*
Summary
Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the `netrw` standard plugin bundled with Vim. By inducing a user to open a crafted URL (e.g., using the `scp://` protocol handler), an attacker can execute arbitrary shell commands with the privileges of the Vim process. Version 9.2.0073 fixes the issue.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.