CVE-2026-32249 | Vim up to 9.2.136 Command Line nfa_max_width null pointer dereference (GHSA-9phh-423r-778r)

A vulnerability labeled as problematic has been found in Vim up to 9.2.136. The affected element is the function nfa_max_width of the component Command Line Handler. Executing a manipulation can lead to null pointer dereference.

This vulnerability is tracked as CVE-2026-32249. The attack is restricted to local execution. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More