Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-68085
HistorySep 01, 2022 - 12:00 a.m.

Vim Resource Management Error Vulnerability (CNVD-2022-68085)

2022-09-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
19
vim
resource management
vulnerability
cnvd-2022-68085
cross-platform
text editor
security
versions
memory
confusion
attacker
code execution.

EPSS

0.001

Percentile

45.7%

Vim is a cross-platform text editor, and a security vulnerability exists in versions prior to Vim 9.0.0321, which stems from a confusion in the instruction responsible for freeing memory in the qf_buf_add_line( ) function. An attacker could use this vulnerability to cause a crash, arbitrary code execution, etc.