Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution

CPENameOperatorVersion
macoslt13.0
debian_linuxeq9.0
debian_linuxeq10.0
fedoraeq34
fedoraeq35
vimlt8.2.4919

Name	Operator	Version
macos	lt	13.0
debian_linux	eq	9.0
debian_linux	eq	10.0
fedora	eq	34
fedora	eq	35
vim	lt	8.2.4919

References

seclists.org/fulldisclosure/2022/Oct/28

seclists.org/fulldisclosure/2022/Oct/41

github.com/vim/vim/commit/7c824682d2028432ee082703ef0ab399867a089b

huntr.dev/bounties/520ce714-bfd2-4646-9458-f52cd22bb2fb

lists.debian.org/debian-lts-announce/2022/05/msg00022.html

lists.debian.org/debian-lts-announce/2022/11/msg00032.html

lists.fedoraproject.org/archives/list/[email protected]/message/HIP7KG7TVS5YF3QREAY2GOGUT3YUBZAI/

security.gentoo.org/glsa/202208-32

security.gentoo.org/glsa/202305-16

support.apple.com/kb/HT213488

cbl_mariner 2

debiancve 1

cve 1

huntr 1

redhatcve 1

osv 9

cvelist 1

nessus 36

nvd 1

ibm 5

alpinelinux 1

veracode 1

ubuntucve 1

oraclelinux 2

almalinux 2

redhat 12

rocky 1

fedora 1

cloudlinux 1

openvas 23

photon 5

cloudfoundry 1

ubuntu 3

altlinux 2

rosalinux 1

debian 2

redos 1

mageia 1

amazon 2

gentoo 2

apple 1

avleonov 1

cbl_mariner

CVE-2022-1621 affecting package vim 8.2.4774-1

2022-06-15 17:03:10

CVE-2022-1621 affecting package vim for versions less than 8.2.4925-1

2022-06-03 17:54:02

debiancve

CVE-2022-1621

2022-05-10 14:15:08

cve

CVE-2022-1621

2022-05-10 14:15:08

huntr

Heap buffer overflow in vim_strncpy find_word

2022-04-28 20:50:03

redhatcve

CVE-2022-1621

2022-05-11 03:59:09

osv

CVE-2022-1621

2022-05-10 14:15:00

Moderate: vim security update

2022-06-30 00:00:00

Moderate: vim security update

2022-06-28 10:52:18

cvelist

CVE-2022-1621 Heap buffer overflow in vim_strncpy find_word in vim/vim

2022-05-09 00:00:00

nessus

CBL Mariner 2.0 Security Update: vim (CVE-2022-1621)

2023-03-28 00:00:00

Rocky Linux 8 : vim (RLSA-2022:5319)

2023-11-06 00:00:00

RHEL 8 : vim (RHSA-2022:5319)

2022-07-01 00:00:00

nvd

CVE-2022-1621

2022-05-10 14:15:08

ibm

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a heap-based buffer overflow in Vim (CVE-2022-1621)

2023-01-12 21:59:00

Security Bulletin: IBM App Connect Enterprise Certified Container operands may be vulnerable to loss of integrity due to CVE-2022-1621

2022-11-03 18:31:54

Security Bulletin: IBM QRadar SIEM Application Framework Base Image is vulnerable to using components with Known Vulnerabilities

2023-02-27 17:34:12

alpinelinux

CVE-2022-1621

2022-05-10 14:15:08

veracode

Heap-Based Buffer Overflow

2022-05-20 08:44:35

ubuntucve

CVE-2022-1621

2022-05-10 00:00:00

oraclelinux

vim security update

2022-07-01 00:00:00

vim security update

2022-06-30 00:00:00

almalinux

Moderate: vim security update

2022-06-30 00:00:00

Moderate: vim security update

2022-07-01 00:00:00

redhat

(RHSA-2022:5319) Moderate: vim security update

2022-06-28 10:52:18

(RHSA-2022:5242) Moderate: vim security update

2022-06-28 08:27:06

(RHSA-2022:5704) Moderate: ACS 3.71 enhancement and security update

2022-07-25 21:38:29

rocky

vim security update

2022-06-28 10:52:18

fedora

[SECURITY] Fedora 34 Update: vim-8.2.4927-1.fc34

2022-05-18 01:25:20

cloudlinux

Fixed CVEs in vim: CVE-2022-1620, CVE-2022-1616, CVE-2022-1629, CVE-2022-1621, CVE-2022-1619

2022-05-20 00:32:32

openvas

Fedora: Security Advisory for vim (FEDORA-2022-8df66cdbef)

2022-05-18 00:00:00

Ubuntu: Security Advisory (USN-5613-2)

2022-09-20 00:00:00

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2148)

2022-07-29 00:00:00

photon

Important Photon OS Security Update - PHSA-2022-0397

2022-05-26 00:00:00

Important Photon OS Security Update - PHSA-2022-3.0-0397

2022-05-26 00:00:00

Important Photon OS Security Update - PHSA-2022-0478

2022-05-27 00:00:00

cloudfoundry

USN-5613-1: Vim vulnerabilities | Cloud Foundry

2022-09-29 00:00:00

ubuntu

Vim vulnerabilities

2022-09-15 00:00:00

Vim regression

2022-09-19 00:00:00

Vim vulnerabilities

2022-06-06 00:00:00

altlinux

Security fix for the ALT Linux 9 package vim version 4:8.2.5019-alt1

2022-06-02 00:00:00

Security fix for the ALT Linux 10 package vim version 4:8.2.5019-alt1

2022-05-31 00:00:00

rosalinux

Advisory ROSA-SA-2023-2215

2023-08-15 09:26:16

debian

[SECURITY] [DLA 3011-1] vim security update

2022-05-16 19:42:09

[SECURITY] [DLA 3204-1] vim security update

2022-11-24 09:17:54

redos

ROS-20220525-01

2022-05-25 00:00:00

mageia

Updated vim packages fix security vulnerability

2022-05-25 21:46:18

amazon

Medium: vim

2022-07-19 01:26:00

Medium: vim

2022-07-28 20:41:00

gentoo

Vim, gVim: Multiple Vulnerabilities

2023-05-03 00:00:00

Vim, gVim: Multiple Vulnerabilities

2022-08-21 00:00:00

apple

About the security content of macOS Ventura 13

2022-10-24 00:00:00

avleonov

Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs

2022-12-30 18:03:13

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.5 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.2%

JSON

Related for PRION:CVE-2022-1621