Published: 08/05/2022 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim before 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allows malicious users to cause a denial of service (application crash) via a crafted input.

Vulnerable Product	Search on Vulmon	Subscribe to Product
vim vim
fedoraproject fedora 34
fedoraproject fedora 35
fedoraproject fedora 36
apple macos

Several security issues were fixed in Vim ...

USN-5613-1 caused a regression in Vim ...

Several security issues were fixed in Vim ...

Use after free in append_command in GitHub repository vim/vim prior to 824895 This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution (CVE-2022-1616) Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 824899 This vulnerabilities ...

NULL Pointer Dereference in function vim_regexec_string at regexpc:2729 in GitHub repository vim/vim prior to 82 NULL Pointer Dereference in function vim_regexec_string at regexpc:2729 allows attackers to cause a denial of service (application crash) via a crafted input ...

CWE-476 https://huntr.dev/bounties/7a4c59f3-fcc0-4496-995d-5ca6acd2da51 https://github.com/vim/vim/commit/8e4b76da1d7e987d43ca960dfbc372d1c617466f https://security.gentoo.org/glsa/202208-32 https://support.apple.com/kb/HT213488 http://seclists.org/fulldisclosure/2022/Oct/41 http://seclists.org/fulldisclosure/2022/Oct/28 https://security.gentoo.org/glsa/202305-16 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A6BY5P7ERZS7KXSBCGFCOXLMLGWUUJIH/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JUN33257RUM4RS2I4GZETKFSAXPETATG/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HIP7KG7TVS5YF3QREAY2GOGUT3YUBZAI/https://nvd.nist.gov https://ubuntu.com/security/notices/USN-5460-1

CVE-2022-1620

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect