Lucene search
Veracode Vulnerability DatabaseVERACODE:36704HistoryAug 13, 2022 - 10:36 a.m.
Denial Of Service (DoS)
2022-08-1310:36:51
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.001 Low
EPSS
Percentile
45.9%
vim is vulnerable to denial of service. The vulnerability exists due to the use after free in the library, allowing an attacker to crash the application by providing a malicious input.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vim:sid | eq | 2:8.2.2434-3 | |
| vim:sid | eq | 2:8.2.1913-1+b2 | |
| vim:sid | eq | 2:8.2.2434-3 | |
| vim:sid | eq | 2:8.2.1913-1+b2 |
References
github.com/vim/vim/commit/32acf1f1a72ebb9d8942b9c9d80023bf1bb668ea
huntr.dev/bounties/1eed7009-db6d-487b-bc41-8f2fd260483f
lists.fedoraproject.org/archives/list/[email protected]/message/43Y3VJPOTTY3NTREDIFUPITM2POG4ZLP/
security-tracker.debian.org/tracker/CVE-2022-2345
security.gentoo.org/glsa/202208-32
security.gentoo.org/glsa/202305-16
Related
huntr
huntr
Heap Use After Free in function skipwhite
2022-07-06 02:00:34
nvd
nvd
CVE-2022-2345
2022-07-08 22:15:07
debiancve
debiancve
CVE-2022-2345
2022-07-08 22:15:07
nessus
nessus
CBL Mariner 2.0 Security Update: vim (CVE-2022-2345)
2023-03-20 00:00:00
Ubuntu 16.04 ESM : Vim vulnerabilities (USN-5775-1)
2022-12-12 00:00:00
EulerOS 2.0 SP5 : vim (EulerOS-SA-2022-2451)
2022-10-08 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-2345 affecting package vim 8.2.5172-1
2022-08-12 16:45:08
CVE-2022-2345 affecting package vim for versions less than 9.0.0050-2
2022-08-03 21:15:04
redhatcve
redhatcve
CVE-2022-2345
2022-07-13 14:14:44
cnvd
cnvd
Vim Resource Management Error Vulnerability (CNVD-2022-55380)
2022-07-08 00:00:00
cvelist
cvelist
CVE-2022-2345 Use After Free in vim/vim
2022-07-08 00:00:00
alpinelinux
alpinelinux
CVE-2022-2345
2022-07-08 22:15:07
prion
prion
Design/Logic Flaw
2022-07-08 22:15:00
cve
cve
CVE-2022-2345
2022-07-08 22:15:07
ubuntucve
ubuntucve
CVE-2022-2345
2022-07-08 00:00:00
cloudlinux
cloudlinux
ubuntu
ubuntu
Vim vulnerabilities
2022-12-12 00:00:00
Vim vulnerabilities
2023-04-04 00:00:00
osv
osv
vim vulnerabilities
2022-12-12 22:32:53
vim vulnerabilities
2023-04-04 08:58:38
openvas
openvas
Ubuntu: Security Advisory (USN-5775-1)
2022-12-13 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-9d7a58e376)
2022-07-22 00:00:00
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2451)
2022-10-10 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: vim-9.0.049-1.fc35
2022-07-21 17:10:23
cloudfoundry
cloudfoundry
USN-5995-1: Vim vulnerabilities | Cloud Foundry
2023-04-24 00:00:00
suse
suse
Security update for vim (important)
2022-09-09 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0380
2023-04-25 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0568
2023-04-19 00:00:00
mageia
mageia
Updated vim packages fix security vulnerability
2022-11-19 01:50:51
gentoo
gentoo
Vim, gVim: Multiple Vulnerabilities
2023-05-03 00:00:00
Vim, gVim: Multiple Vulnerabilities
2022-08-21 00:00:00
avleonov
avleonov