CVE-2025-9389

vim memmove-vec-unaligned-erms.S __memmove_avx_unaligned_erms memory corruption

Description

A vulnerability was identified in vim 9.1.0000. Affected is the function __memmove_avx_unaligned_erms of the file memmove-vec-unaligned-erms.S. The manipulation leads to memory corruption. The attack needs to be performed locally. The exploit is publicly available and might be used. Some users are not able to reproduce this. One of the users mentions that this appears not to be working, "when coloring is turned on".

INFO

Published Date :

2025-08-24T13:02:07.721Z

Last Modified :

2025-08-24T13:02:07.721Z

Source :

VulDB

AFFECTED PRODUCTS

The following products are affected by CVE-2025-9389 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-9389.

URL	Resource
https://drive.google.com/file/d/1iFbTpW79vqBPkFjWYzGYIh_E6esPhYVY/view?usp=sharing
https://github.com/vim/vim/issues/17940
https://github.com/vim/vim/issues/17940#issuecomment-3203415781
https://vuldb.com/?ctiid.321222
https://vuldb.com/?id.321222
https://vuldb.com/?submit.630898

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact

Detailed values of each vector for above chart.

Access Vector

Access Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact