Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.32 views

Amazon Linux 2023 : vim-common, vim-data, vim-default-editor (ALAS2023-2023-431)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-431 advisory. Vim is an improved version of the good old UNIX editor Vi. Heap-use-after-free in memory allocated in the function gagrowinner in in the file src/alloc.c at line 748, which is freed in the file...

5.5CVSS6.2AI score0.00366EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/09/05 5:28 a.m.36 views

CVE-2022-3099

A use-after-free vulnerability was found in vim's docmdline function of the src/exdocmd.c file. The issue triggers when an invalid line number on :for is ignored. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering use-after-free that causes an applicati...

7.8CVSS5.2AI score0.00464EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/09/03 12:0 a.m.2 views

Vim 资源管理错误漏洞

Vim is a cross-platform text editor. versions prior to Vim 9.0.0359 are vulnerable to a resource management error, which stems from a post-release reuse in the function docmdline. An attacker could exploit this vulnerability to cause a denial of service attack...

7.8CVSS6.6AI score0.00464EPSS
Exploits1References15
Huntr
Huntr
added 2022/09/01 9:55 a.m.30 views

Use After Free in function do_cmdline

Description Use After Free in function docmdline at vim/src/exdocmd.c:1076. vim version git log commit 5d09a401ec393dc930e1104ceb38eab34681de64 HEAD - master, tag: v9.0.0343, origin/master, origin/HEAD Proof of Concept ./vim -u NONE -i NONE -n -m -X -Z -e -s -S /home/fuzz/test/poc7huaf.dat -c :qa...

4.4CVSS0.00464EPSS
Exploits1
Rows per page
Query Builder