Lucene search

K
ubuntucveUbuntu.comUB:CVE-2022-3037
HistoryAug 30, 2022 - 12:00 a.m.

CVE-2022-3037

2022-08-3000:00:00
ubuntu.com
ubuntu.com
23
cve-2022-3037
github
use after free
vim
repository
vulnerability
unix

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

45.7%

Use After Free in GitHub repository vim/vim prior to 9.0.0322.

Bugs

Notes

Author Note
eslerm code in xenial changed drastically before patch
OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchvim< 2:8.1.2269-1ubuntu5.17UNKNOWN
ubuntu22.04noarchvim< 2:8.2.3995-1ubuntu2.11UNKNOWN

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

45.7%