7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
41.0%
A vulnerability in the Vim text editor is related to a boundary error in the utfc_ptr2len() function in mbyte.
Exploitation of the vulnerability could allow an attacker acting remotely to trick the victim into
to open a specially crafted file, cause a heap buffer overflow, and execute arbitrary code on the target system.
target system
A vulnerability in the Vim text editor is related to a post-release memory usage error in the function
getcmdline_int() in ex_getln.c. Exploitation of the vulnerability could allow an attacker acting
remotely, trick the victim into opening a specially crafted file, raise a post-release memory usage error, and execute an arbitrary file.
memory usage error upon release, and execute arbitrary code on the system