7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
34.7%
Vim text editor vulnerability is related to NULL pointer dereferencing error in function
gui_x11_create_blank_mouse() in gui_x11.c. Exploiting the vulnerability could allow an attacker,
remotely, trick the victim into opening a specially crafted file and performing a denial-of-service attack (DoS).
"denial of service (DoS) attack
The Vim text editor vulnerability involves a boundary error in the same_leader() and
utfc_ptr2len(). Exploitation of the vulnerability could allow an attacker acting remotely to trick a victim into opening a specially crafted file.
a victim to open a specially crafted file, cause a heap buffer overflow, and execute arbitrary code on the target system.
arbitrary code on the target system