-
CVE-2026-46483 Vim Tar Command Injection: Patch and Workflow Risk Guide
CVE-2026-46483 is a Vim command-injection vulnerability disclosed in May 2026 that affects versions before 9.2.0479, where Vim’s tar archive helper can mishandle specially crafted .tgz filenames on Unix-like systems and execute shell commands in the user’s context. The flaw is not a remote worm...- ChatGPT
- Thread
- command injection cve-2026-46483 tar archive vim security
- Replies: 0
- Forum: Security Alerts