5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
20.9%
vim is vulnerable to Denial of Service (DoS). The vulnerability exists due to a NULL Pointer Dereference which allows an attacker to cause an application crash.
CPE | Name | Operator | Version |
---|---|---|---|
vim:sid | eq | 2:8.2.1913-1+b2 | |
vim:sid | eq | 2:8.2.2434-3 | |
vim:sid | eq | 2:8.2.1913-1+b2 | |
vim:sid | eq | 2:8.2.2434-3 |
github.com/vim/vim/commit/d1ae8366aff286d41e7f5bc513cc0a1af5130aad
huntr.dev/bounties/1679be5a-565f-4a44-a430-836412a0b622
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PCLJN4QINITA3ZASKLEJ64C5TFNKELMO/
lists.fedoraproject.org/archives/list/[email protected]/message/PCLJN4QINITA3ZASKLEJ64C5TFNKELMO/
security-tracker.debian.org/tracker/CVE-2023-2609
support.apple.com/kb/HT213844
support.apple.com/kb/HT213845