Key Information CVE: CVE-2023-2609 Vulnerability Type: CWE-476: NULL Pointer Dereference Severity: 7.8 (High) Affected Versions: Vim 9.0.1425 and possibly earlier versions Status: Fixed Description Null pointer dereference in at register.c:311. The variable is due to the variable. Version Information Commit: 3bea62381c527395ae70171535776f427d22e7b Author: Amaan Qureshi Date: Thu Mar 23 15:45:46 2023 Patch: 9.0.1425 - "wat" and "wast" files are one filetype - Problem: "wat" and "wast" files are treated as one filetype. - Solution: Add a separate filetype for "wat" files. Proof of Concept (PoC) Trigger a segmentation fault by running: GDB Debugging Information Program received signal, causing a segmentation fault. Stop reason: SIGSEGV Occurred at line 311 in function, when . Impact May lead to Denial of Service (DoS), and potentially remote code execution. Fix The vulnerability was fixed in Vim version 9.0.1531, with fix commit .