Lucene search
Veracode Vulnerability DatabaseVERACODE:37009HistorySep 13, 2022 - 4:34 a.m.
Use-After-Free
2022-09-1304:34:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
use-after-free
vulnerability
code injection
quickfix.c
edge
vim
0.001 Low
EPSS
Percentile
45.8%
vim, edge is vulnerable to use-after-free. The vulnerability exists in qf_fill_buffer function in quickfix.c because user input not properly sanitization which allows an attacker to inject and execute malicious code into the system into the system.
References
github.com/vim/vim/commit/4f1b083be43f351bc107541e7b0c9655a5d2c0bb
huntr.dev/bounties/af4c2f2d-d754-4607-b565-9e92f3f717b5
lists.fedoraproject.org/archives/list/[email protected]/message/RY3GEN2Q46ZJKSNHTN2XB6B3VAJBEILN/
lists.fedoraproject.org/archives/list/[email protected]/message/VHJ6LCLHGGVI2U6ZHXHTZ2PYP4STC23N/
lists.fedoraproject.org/archives/list/[email protected]/message/XWOJOA7PZZAMBI5GFTL6PWHXMWSDLUXL/
secdb.alpinelinux.org/edge/main.yaml
Related
redhatcve
redhatcve
CVE-2022-3037
2022-08-31 19:59:45
fedora
fedora
[SECURITY] Fedora 35 Update: vim-9.0.348-1.fc35
2022-09-06 10:31:40
[SECURITY] Fedora 36 Update: vim-9.0.348-1.fc36
2022-09-04 22:49:30
[SECURITY] Fedora 37 Update: vim-9.0.412-1.fc37
2022-09-14 00:28:23
prion
prion
Design/Logic Flaw
2022-08-30 21:15:00
nvd
nvd
CVE-2022-3037
2022-08-30 21:15:09
cvelist
cvelist
CVE-2022-3037 Use After Free in vim/vim
2022-08-30 20:35:10
ubuntucve
ubuntucve
CVE-2022-3037
2022-08-30 00:00:00
huntr
huntr
Use After Free in Function qf_buf_add_line( )
2022-08-28 14:15:50
nessus
nessus
CBL Mariner 2.0 Security Update: vim (CVE-2022-3037)
2023-03-28 00:00:00
SUSE SLED15 / SLES15 Security Update : vim (SUSE-SU-2022:4282-1)
2022-11-30 00:00:00
Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS : Vim vulnerabilities (USN-6302-1)
2023-08-21 00:00:00
openvas
openvas
Fedora: Security Advisory for vim (FEDORA-2022-221bd89404)
2022-09-05 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-35d9bdb7dc)
2022-09-07 00:00:00
Fedora: Security Advisory for vim (FEDORA-2022-b9edf60581)
2022-09-15 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-3037 affecting package vim for versions less than 9.0.0325-1
2022-09-16 06:05:42
CVE-2022-3037 affecting package vim 9.0.0181-1
2022-09-17 05:56:39
alpinelinux
alpinelinux
CVE-2022-3037
2022-08-30 21:15:09
cnvd
cnvd
Vim Resource Management Error Vulnerability (CNVD-2022-68085)
2022-09-01 00:00:00
debiancve
debiancve
CVE-2022-3037
2022-08-30 21:15:09
cve
cve
CVE-2022-3037
2022-08-30 21:15:09
osv
osv
CVE-2022-3037
2022-08-30 21:15:00
vim vulnerabilities
2023-08-21 05:45:06
redos
redos
ROS-20221123-01
2022-11-23 00:00:00
ubuntu
ubuntu
Vim vulnerabilities
2023-08-21 00:00:00
cloudfoundry
cloudfoundry
USN-6302-1: Vim vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0380
2023-04-25 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0568
2023-04-19 00:00:00
mageia
mageia
Updated vim packages fix security vulnerability
2022-11-19 01:50:51