7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
36.3%
A vulnerability in the Vim text editor is related to a boundary error in the msg_puts_printf(0 function in message.c.
Exploitation of the vulnerability could allow an attacker acting remotely to trick the victim into
to open a specially crafted file, cause a heap buffer overflow, and execute arbitrary code on the target system.
target system
The vulnerability in the Vim text editor is related to boundary conditions in the build_stl_str_hl() function in the file
buffer.c. Exploitation of the vulnerability could allow a remote attacker to trick a victim into opening a specially crafted file.
a victim to open a specially crafted file, cause a read error outside the boundary conditions, and read the
the contents of memory on the system
The vulnerability in the Vim text editor is related to a boundary error when processing untrusted input data in the do_string_s function.
data in the do_string_sub() function in eval.c. Exploitation of the vulnerability could allow an attacker,
acting remotely, trick the victim into opening a specially crafted file, initiating an
unauthorized writing and execution of arbitrary code on the target system