Lucene search

K
redosRedosROS-20240911-07
HistorySep 11, 2024 - 12:00 a.m.

ROS-20240911-07

2024-09-1100:00:00
redos.red-soft.ru
5
vulnerability
buffer boundaries
exploitation
arbitrary code
unix

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

Low

EPSS

0.001

Percentile

24.3%

Vulnerability of utfc_ptr2len() function of vim text editor is related to operation exceeding buffer boundaries
in memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64vim-x11< 9.0.1385-1UNKNOWN

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

Low

EPSS

0.001

Percentile

24.3%