Total
194 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-3778 | 4 Debian, Fedoraproject, Netapp and 1 more | 4 Debian Linux, Fedora, Ontap Select Deploy Administration Utility and 1 more | 2023-11-07 | 6.8 MEDIUM | 7.8 HIGH |
| vim is vulnerable to Heap-based Buffer Overflow | |||||
| CVE-2021-3770 | 3 Fedoraproject, Netapp, Vim | 3 Fedora, Ontap Select Deploy Administration Utility, Vim | 2023-11-07 | 4.6 MEDIUM | 7.8 HIGH |
| vim is vulnerable to Heap-based Buffer Overflow | |||||
| CVE-2019-12735 | 2 Neovim, Vim | 2 Neovim, Vim | 2023-11-07 | 9.3 HIGH | 8.6 HIGH |
| getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim. | |||||
| CVE-2017-6350 | 1 Vim | 1 Vim | 2023-11-07 | 7.5 HIGH | 9.8 CRITICAL |
| An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows. | |||||
| CVE-2017-6349 | 1 Vim | 1 Vim | 2023-11-07 | 7.5 HIGH | 9.8 CRITICAL |
| An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows. | |||||
| CVE-2017-5953 | 1 Vim | 1 Vim | 2023-11-07 | 7.5 HIGH | 9.8 CRITICAL |
| vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow. | |||||
| CVE-2021-3236 | 1 Vim | 1 Vim | 2023-09-15 | N/A | 5.5 MEDIUM |
| vim 8.2.2348 is affected by null pointer dereference, allows local attackers to cause a denial of service (DoS) via the ex_buffer_all method. | |||||
| CVE-2023-3896 | 1 Vim | 1 Vim | 2023-08-31 | N/A | 7.8 HIGH |
| Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3 | |||||
| CVE-2022-2598 | 2 Debian, Vim | 2 Debian Linux, Vim | 2023-07-11 | N/A | 5.5 MEDIUM |
| Out-of-bounds Write to API in GitHub repository vim/vim prior to 9.0.0100. | |||||
| CVE-2022-2845 | 2 Fedoraproject, Vim | 2 Fedora, Vim | 2023-07-10 | N/A | 7.8 HIGH |
| Improper Validation of Specified Quantity in Input in GitHub repository vim/vim prior to 9.0.0218. | |||||
| CVE-2020-20703 | 1 Vim | 1 Vim | 2023-06-27 | N/A | 9.8 CRITICAL |
| Buffer Overflow vulnerability in VIM v.8.1.2135 allows a remote attacker to execute arbitrary code via the operand parameter. | |||||
| CVE-2023-0054 | 1 Vim | 1 Vim | 2023-06-12 | N/A | 7.8 HIGH |
| Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145. | |||||
| CVE-2023-0051 | 1 Vim | 1 Vim | 2023-05-03 | N/A | 7.8 HIGH |
| Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144. | |||||
| CVE-2022-4293 | 1 Vim | 1 Vim | 2023-05-03 | N/A | 5.5 MEDIUM |
| Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804. | |||||
| CVE-2022-3591 | 1 Vim | 1 Vim | 2023-05-03 | N/A | 7.8 HIGH |
| Use After Free in GitHub repository vim/vim prior to 9.0.0789. | |||||
| CVE-2022-3520 | 1 Vim | 1 Vim | 2023-05-03 | N/A | 9.8 CRITICAL |
| Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0765. | |||||
| CVE-2022-3491 | 1 Vim | 1 Vim | 2023-05-03 | N/A | 7.8 HIGH |
| Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0742. | |||||
| CVE-2022-3153 | 1 Vim | 1 Vim | 2023-05-03 | N/A | 5.5 MEDIUM |
| NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404. | |||||
| CVE-2022-2874 | 1 Vim | 1 Vim | 2023-05-03 | N/A | 5.5 MEDIUM |
| NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0224. | |||||
| CVE-2022-2522 | 1 Vim | 1 Vim | 2023-05-03 | N/A | 7.8 HIGH |
| Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0061. | |||||