Lucene search
Veracode Vulnerability DatabaseVERACODE:38339HistoryDec 05, 2022 - 9:45 a.m.
Use After Free
2022-12-0509:45:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
vim
use after free
buffer.c
do_buffer_ext
heap corruption
remote attacker
software vulnerability
0.001 Low
EPSS
Percentile
26.6%
vim is vulnerable to use after free. The vulnerability exists in do_buffer_ext function of buffer.c due to dummy buffer ends up in a window which allows a remote attacker to potentially exploit heap corruption via malicious input.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vim:sid | eq | 2:8.2.2434-3 | |
| vim:sid | eq | 2:8.2.1913-1+b2 | |
| vim:sid | eq | 2:8.2.2434-3 | |
| vim:sid | eq | 2:8.2.1913-1+b2 |
Related
cve
cve
CVE-2022-3591
2022-12-02 17:15:09
cloudlinux
cloudlinux
vim: Fix of CVE-2022-3591
2022-12-15 17:44:25
cvelist
cvelist
CVE-2022-3591 Use After Free in vim/vim
2022-12-02 00:00:00
huntr
huntr
Use After Free in function bt_quickfix
2022-10-17 06:49:46
alpinelinux
alpinelinux
CVE-2022-3591
2022-12-02 17:15:09
redhatcve
redhatcve
CVE-2022-3591
2022-12-12 17:04:55
debiancve
debiancve
CVE-2022-3591
2022-12-02 17:15:09
nvd
nvd
CVE-2022-3591
2022-12-02 17:15:09
prion
prion
Design/Logic Flaw
2022-12-02 17:15:00
ubuntucve
ubuntucve
CVE-2022-3591
2022-12-02 00:00:00
nessus
nessus
Amazon Linux AMI : vim (ALAS-2023-1663)
2023-01-24 00:00:00
Amazon Linux 2 : vim (ALAS-2022-1902)
2022-12-07 00:00:00
EulerOS 2.0 SP9 : vim (EulerOS-SA-2023-1858)
2023-05-13 00:00:00
amazon
amazon
Important: vim
2023-01-18 20:56:00
Important: vim
2022-12-01 20:32:00
openvas
openvas
Slackware: Security Advisory (SSA:2022-342-02)
2022-12-09 00:00:00
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2023-2009)
2023-06-01 00:00:00
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2023-2030)
2023-06-01 00:00:00
osv
osv
vim vulnerabilities
2022-12-12 22:32:53
vim vulnerabilities
2023-10-09 04:10:20
ubuntu
ubuntu
Vim vulnerabilities
2022-12-12 00:00:00
Vim vulnerabilities
2023-10-09 00:00:00
slackware
slackware
[slackware-security] vim
2022-12-08 22:52:15
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0359
2023-03-20 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0554
2023-03-21 00:00:00
cloudfoundry
cloudfoundry
USN-6420-1: Vim vulnerabilities | Cloud Foundry
2023-11-09 00:00:00
gentoo
gentoo
Vim, gVim: Multiple Vulnerabilities
2023-05-03 00:00:00