Lucene search
K

12 matches found

Circl
Circl
added 2025/04/10 7:9 p.m.21 views

CVE-2007-2438

creationtimestamp| type| source ---|---|--- 2025-04-10 19:09:41+00:00| seen| https://gist.github.com/eduardoarakaki/a203f83ced3b0992af6de67c2eeeb7a3...

7.6CVSS6.7AI score0.03221EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.22 views

Oracle: Security Advisory (ELSA-2007-0346)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS6.5AI score0.03221EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.35 views

Oracle Linux 5 : Moderate: / vim (ELSA-2007-0346)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2007-0346 advisory. 7.0.109-3.3 - use gzip -9n to avoid multilib fileconflicts 7.0.109-3.2 - Let 'modeline' default to off for root - Resolves: bz238259 7.0.109-3.1 - fix modeline...

7.6CVSS8.2AI score0.03221EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.34 views

Ubuntu Update for vim vulnerability USN-463-1

Ubuntu Update for Linux kernel vulnerabilities USN-463-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4631.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for vim vulnerability USN-463-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.n...

7.6CVSS0.8AI score0.03221EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.21 views

Debian Security Advisory DSA 1364-1 (vim)

The remote host is missing an update to vim announced via advisory DSA 1364-1. OpenVAS Vulnerability Test $Id: deb13641.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1364-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.6CVSS0.6AI score0.04179EPSS
Exploits2
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.23 views

Debian: Security Advisory (DSA-1364-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS6.6AI score0.04179EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.48 views

openSUSE 10 Security Update : vim (vim-3410)

Files with VIM modelines could call some unsafe VIM functions CVE-2007-2438. Modelines are disabled in the default config /etc/vimrc of openSUSE though. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securit...

7.6CVSS8.2AI score0.03221EPSS
Exploits1References1
Prion
Prion
added 2007/05/14 9:19 p.m.24 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-2438. Reason: This candidate is a duplicate of CVE-2007-2438. Notes: All CVE users should reference CVE-2007-2438 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

6.4AI score0.03221EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2007/05/14 9:19 p.m.2 views

CVE-2007-2653

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-2438. Reason: This candidate is a duplicate of CVE-2007-2438. Notes: All CVE users should reference CVE-2007-2438 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

7.6CVSS7.3AI score0.03221EPSS
Exploits1References1
CVE
CVE
added 2007/05/14 9:0 p.m.56 views

CVE-2007-2653

CVE-2007-2653 is rejected; refer to CVE-2007-2438 instead; not an active vulnerability entry.

9.4AI score
Exploits0
OSV
OSV
added 2007/05/02 9:19 p.m.8 views

CVE-2007-2438

The sandbox for vim allows dangerous functions such as 1 writefile, 2 feedkeys, and 3 system, which might allow user-assisted attackers to execute shell commands and write files via modelines...

6.9AI score
Exploits0References30
CVE
CVE
added 2007/05/02 9:0 p.m.85 views

CVE-2007-2438

CVE-2007-2438 targets Vim’s sandbox, where modeline parsing grants access to dangerous functions (writefile, feedkeys, system), enabling user-assisted execution of shell commands and file writes. The issue affects Vim components exposed to modelines and has been addressed in multiple advisories a...

7.6CVSS6.8AI score0.03221EPSS
Exploits1References30Affected Software1
Rows per page
Query Builder