CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0433 – Heap-based Buffer Overflow in vim/vim
https://notcve.org/view.php?id=CVE-2023-0433
21 Jan 2023 — Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. Desbordamiento de búfer de almacenamiento dinámico en el repositorio de GitHub vim/vim anterior a 9.0.1225. It was discovered that Vim was not properly performing memory management operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. • http://seclists.org/fulldisclosure/2023/Mar/17 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0288 – Heap-based Buffer Overflow in vim/vim
https://notcve.org/view.php?id=CVE-2023-0288
13 Jan 2023 — Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. It was discovered that Vim was not properly performing memory management operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. It was discovered that Vim was not properly performing memory management operations. • http://seclists.org/fulldisclosure/2023/Mar/17 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0051 – Heap-based Buffer Overflow in vim/vim
https://notcve.org/view.php?id=CVE-2023-0051
04 Jan 2023 — Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144. It was discovered that Vim was not properly performing memory management operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. It was discovered that Vim was not properly performing memory management operations. • http://seclists.org/fulldisclosure/2023/Mar/17 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 1CVE-2023-0049 – Out-of-bounds Read in vim/vim
https://notcve.org/view.php?id=CVE-2023-0049
04 Jan 2023 — Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143. Lectura fuera de los límites en el repositorio de GitHub vim/vim, afectando a las versiones anteriores a la 9.0.1143. It was discovered that Vim was not properly performing memory management operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. • http://seclists.org/fulldisclosure/2023/Mar/17 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0054 – Out-of-bounds Write in vim/vim
https://notcve.org/view.php?id=CVE-2023-0054
04 Jan 2023 — Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145. It was discovered that Vim was not properly performing memory management operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. It was discovered that Vim was not properly performing memory management operations. • http://seclists.org/fulldisclosure/2023/Mar/17 • CWE-787: Out-of-bounds Write •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-4293 – Floating Point Comparison with Incorrect Operator in vim/vim
https://notcve.org/view.php?id=CVE-2022-4293
05 Dec 2022 — Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804. It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. It was discovered that Vim incorrectly handled memory when opening certain files. • https://github.com/vim/vim/commit/cdef1cefa2a440911c727558562f83ed9b00e16b • CWE-697: Incorrect Comparison CWE-1077: Floating Point Comparison with Incorrect Operator •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-4292 – Use After Free in vim/vim
https://notcve.org/view.php?id=CVE-2022-4292
05 Dec 2022 — Use After Free in GitHub repository vim/vim prior to 9.0.0882. Use After Free en el repositorio de GitHub vim/vim anterior a 9.0.0882. Multiple vulnerabilities have been found in Vim, the worst of which could result in denial of service. Versions less than 9.0.1157 are affected. • https://github.com/vim/vim/commit/c3d27ada14acd02db357f2d16347acc22cb17e93 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-3491 – Heap-based Buffer Overflow in vim/vim
https://notcve.org/view.php?id=CVE-2022-3491
03 Dec 2022 — Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0742. Desbordamiento de búfer de almacenamiento dinámico en el repositorio de GitHub vim/vim anterior a 9.0.0742. It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. • https://github.com/vim/vim/commit/3558afe9e9e904cabb8475392d859f2d2fc21041 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2022-3520 – Heap-based Buffer Overflow in vim/vim
https://notcve.org/view.php?id=CVE-2022-3520
02 Dec 2022 — Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0765. Desbordamiento de búfer de almacenamiento dinámico en el repositorio de GitHub vim/vim anterior a 9.0.0765. It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. • https://github.com/vim/vim/commit/36343ae0fb7247e060abfd35fb8e4337b33abb4b • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-3591 – Use After Free in vim/vim
https://notcve.org/view.php?id=CVE-2022-3591
02 Dec 2022 — Use After Free in GitHub repository vim/vim prior to 9.0.0789. Use After Free en el repositorio de GitHub vim/vim anterior a 9.0.0789. It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. • https://github.com/vim/vim/commit/8f3c3c6cd044e3b5bf08dbfa3b3f04bb3f711bad • CWE-416: Use After Free •