INFSA-2025:17715: vim security update
Information about definition
Identificator: INFSA-2025:17715
Type: security
Release date: 2025-10-17 10:32:47 UTC
Information about package
Vim (Vi IMproved) is an updated and improved version of the vi editor.
Vulnerabilities description
- CVE-2025-53905
A path traversal flaw was found in Vim. Successful exploitation can lead to overwriting sensitive files or placing executable code in privileged locations, depending on the permissions of the process editing the archive.
- CVE-2025-53906
A path traversal flaw was found in Vim. Successful exploitation can lead to overwriting sensitive files or placing executable code in privileged locations, depending on the permissions of the process editing the archive.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2025-53905
|
no information | 4.1 | no information |
|
NIST — CVE-2025-53906
|
no information | 4.1 | no information |
Updated packages
Preparing to download...