Lucene search

K

Redhat.comRH:CVE-2023-1264

HistoryMar 09, 2023 - 12:15 a.m.

CVE-2023-1264

2023-03-0900:15:21

redhat.com

access.redhat.com

33

vulnerability

null pointer dereference

vim

mbyte.c file

denial of service

mitigation

untrusted vim scripts

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

23.1%

A NULL pointer dereference vulnerability was discovered in vim’s utfc_ptr2len() function in the mbyte.c file. This issue is due to using a NULL pointer with the nested :open command. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering an issue that causes an application to crash, leading to a denial of service.

Mitigation

Untrusted vim scripts with -s [scriptin] are not recommended to run.

References

bugzilla.redhat.com/show_bug.cgi?id=2176413

huntr.dev/bounties/b2989095-88f3-413a-9a39-c1c58a6e6815

nvd.nist.gov/vuln/detail/CVE-2023-1264

www.cve.org/CVERecord?id=CVE-2023-1264

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

23.1%

Related for RH:CVE-2023-1264

debiancve1 cbl_mariner2 nvd1 ubuntucve1 osv2 cgr1 cve1 alpinelinux1 prion1 wolfi1 cnvd1 veracode1 cvelist1 huntr1 nessus27 slackware1 fedora3 openvas18 amazon2 cloudfoundry1 ubuntu1 rosalinux1 photon3