An issue in the installer of gvim 9.0.0000 allows authenticated malicious users to execute arbitrary code via a binary hijacking attack on C:\Program.exe.
vim gvim 9.0.0000