Published: 18/08/2022 Updated: 03/05/2023

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 0

NULL Pointer Dereference in GitHub repository vim/vim before 9.0.0224.

Vulnerable Product	Search on Vulmon	Subscribe to Product
vim vim

A heap buffer overflow vulnerability was found in vim's ins_compl_infercase_gettext() function of the src/insexpandc file This flaw occurs when vim tries to access uninitialized memory when completing a long line This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap-based buffer overflow that cause ...

A flaw was found in vim, which is vulnerable to an out-of-bounds read in the msg_outtrans_special function This flaw allows a specially crafted file to crash software or execute code when opened in vim (CVE-2022-2257) A heap buffer overflow vulnerability was found in Vim's inc() function of misc2c This issue occurs because Vim reads beyond the ...

CWE-476 https://github.com/vim/vim/commit/4875d6ab068f09df88d24d81de40dcd8d56e243d https://huntr.dev/bounties/95f97dfe-247d-475d-9740-b7adc71f4c79 https://security.gentoo.org/glsa/202305-16 https://nvd.nist.gov https://alas.aws.amazon.com/AL2/ALAS-2023-1975.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-2874

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect