Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-2946

Published: 23/08/2022 Updated: 07/11/2023
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Vim

Vulnerability Summary

Use After Free in GitHub repository vim/vim before 9.0.0246.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

vim vim

fedoraproject fedora 35

debian debian linux 10.0

Vendor Advisories

Debian CVElist Bug Report Logs: vim: CVE-2022-2946 CVE-2022-2982 CVE-2022-3037 CVE-2022-3099 CVE-2022-3134
Debian Bug report logs - #1019590 vim: CVE-2022-2946 CVE-2022-2982 CVE-2022-3037 CVE-2022-3099 CVE-2022-3134 Package: src:vim; Maintainer for src:vim is Debian Vim Maintainers <team+vim@trackerdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Mon, 12 Sep 2022 18:30:02 UTC Severity: important Tags: ...
Amazon Linux 2: ALAS2-2022-1868
A flaw was found in vim, which is vulnerable to an out-of-bounds read in the msg_outtrans_special function This flaw allows a specially crafted file to crash software or execute code when opened in vim (CVE-2022-2257) A heap buffer overflow vulnerability was found in Vim's inc() function of misc2c This issue occurs because Vim reads beyond the ...
Red Hat:
Use After Free in GitHub repository vim/vim prior to 900245 ...
Amazon Linux 2022: ALAS2022-2022-131
A flaw was found in vim, which is vulnerable to an out-of-bounds read in the msg_outtrans_special function This flaw allows a specially crafted file to crash software or execute code when opened in vim (CVE-2022-2257) A heap buffer overflow vulnerability was found in Vim's inc() function of misc2c This issue occurs because Vim reads beyond the ...

References

CWE-416https://huntr.dev/bounties/5d389a18-5026-47df-a5d0-1548a9b555d5https://github.com/vim/vim/commit/adce965162dd89bf29ee0e5baf53652e7515762chttps://lists.debian.org/debian-lts-announce/2022/11/msg00009.htmlhttps://security.gentoo.org/glsa/202305-16https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C72HDIMR3KTTAO7QGTXWUMPBNFUFIBRD/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1019590https://nvd.nist.govhttps://alas.aws.amazon.com/AL2/ALAS-2022-1868.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-26978CVE-2024-26982wirelessCVE-2023-6949CVE-2024-26980CVE-2024-32766CVE-2024-26939cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook