CVE-2026-34714

CRITICAL

Vim < 9.2.0272 - Remote Code Execution via %{expr} Injection in Tabpanel

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-34714. PoCs published by Hex0rc1st.

AI-analyzed exploit summary This is a detailed security advisory from QiAnXin CERT discussing the Vim code execution vulnerability (CVE-2026-34714). It provides an overview of the vulnerability, affected versions, and mitigation measures but does not include functional exploit code.

Description

Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default configuration, because %{expr} injection occurs with tabpanel lacking P_MLE.

Exploits (1)

github WRITEUP 1 stars
by Hex0rc1st · pythonpoc
https://github.com/Hex0rc1st/CVE_POC_monitor/tree/main/article/uploads/demo_1775010713/【已复现】Vim 代码执行漏洞(CVE-2026-34714)安全风险通告

This is a detailed security advisory from QiAnXin CERT discussing the Vim code execution vulnerability (CVE-2026-34714). It provides an overview of the vulnerability, affected versions, and mitigation measures but does not include functional exploit code.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Vim (version not specified in the provided content)
No auth needed
Prerequisites: Vim installation with vulnerable version
devstral-2 · analyzed Apr 14, 2026 Full analysis →

References (7)

Core 7

Scores

CVSS v3 9.2
EPSS 0.0002
EPSS Percentile 4.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-78
Status published
Products (2)
Vim/Vim < 9.2.0272
vim/vim < 9.2.0272
Published Mar 30, 2026
Tracked Since Mar 31, 2026