CVE-2022-1160 |
AVG-2662 |
High |
No |
Arbitrary code execution |
"source" can read past end of copied line resulting in heap buffer overflow in get_one_sourceline in vim prior to 8.2.4647 |
CVE-2022-1154 |
AVG-2662 |
High |
No |
Arbitrary code execution |
Use after free in utf_ptr2char in vim prior to 8.2.4646 while using buffer line after it has been freed in old regexp engine. |
CVE-2022-0318 |
AVG-2738 |
Medium |
No |
Arbitrary code execution |
Heap-based Buffer Overflow in vim prior to 8.2 |
CVE-2022-0261 |
AVG-2738 |
High |
No |
Arbitrary code execution |
heap based out-of-bounds write in vim's ops.c allows an attacker to trick a user to open a crafted file triggering an out-of-bounds write capable of... |
CVE-2021-4192 |
AVG-2738 |
High |
Unknown |
Unknown |
use-after-free in win_linetabsize() |
CVE-2021-4069 |
AVG-2572 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3741 is vulnerable to a use after free through using freed memory in the open command. |
CVE-2021-4019 |
AVG-2572 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3669 is vulnerable to a heap-based buffer overflow when using a long help argument. |
CVE-2021-3984 |
AVG-2572 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3625 is vulnerable to a heap-based buffer overflow when C-indenting. |
CVE-2021-3974 |
AVG-2572 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3612 is vulnerable to a use after free through using freed memory with regexp using a mark. |
CVE-2021-3973 |
AVG-2572 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3611 is vulnerable to a heap-based buffer overflow when using CTRL-W f without finding a file name. |
CVE-2021-3968 |
AVG-2572 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3610 is vulnerable to a heap-based buffer overflow when ModeChanged is triggered too early. |
CVE-2021-3928 |
AVG-2472 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3582 is vulnerable to a heap-based buffer overflow through reading uninitialized memory when giving spell suggestions. |
CVE-2021-3927 |
AVG-2472 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3581 is vulnerable to a heap-based buffer overflow when reading a character past the end of line. |
CVE-2021-3903 |
AVG-2472 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3564 is vulnerable to a heap-based buffer overflow when scrolling without a valid screen. |
CVE-2021-3875 |
AVG-2472 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3489 is vulnerable to a heap-based buffer overflow after a search with range. |
CVE-2021-3872 |
AVG-2472 |
Low |
No |
Arbitrary code execution |
Vim before version 8.2.3487 is vulnerable to a heap-based buffer overflow if a Vim buffer name is very long. |
CVE-2021-3796 |
AVG-2390 |
Medium |
No |
Arbitrary code execution |
vim before version 8.2.3428 is vulnerable to a use after free when replacing. |
CVE-2021-3778 |
AVG-2364 |
Medium |
Yes |
Arbitrary code execution |
vim before version 8.2.3409 is vulnerable to a heap-based buffer overflow when reading beyond the end of a line with an invalid UTF-8 character. |
CVE-2021-3770 |
AVG-2364 |
Medium |
No |
Arbitrary code execution |
vim before version 8.2.3402 is vulnerable to a heap-based buffer overflow when using :retab with large value. |
CVE-2019-12735 |
AVG-976 |
High |
Yes |
Arbitrary code execution |
getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as... |
CVE-2017-1000382 |
AVG-635 |
Medium |
No |
Information disclosure |
VIM ignores umask when creating a swap file ("[ORIGINAL_FILENAME].swp") resulting in files that may be world readable or otherwise accessible in ways not... |
CVE-2017-11109 |
AVG-347 |
High |
No |
Arbitrary code execution |
Vim 8.0 allows attackers to cause a denial of service (invalid free) or possibly have unspecified other impact via a crafted source (aka -S) file. |
CVE-2017-5953 |
AVG-174 |
Medium |
No |
Arbitrary code execution |
It was found that vim does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory... |