PT-2022-4851 · Vim+6 · Vim+6

Brammool

Published

2022-01-24

Updated

2024-06-15

CVE-2022-0368

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions vim versions prior to 8.2

Description The issue is related to an out-of-bounds read in the vim text editor. This can be exploited by a remote attacker to access confidential data, compromise data integrity, and cause a denial of service. The vulnerability is associated with the undo feature leaving the end of the visual area beyond the end of a line.

Recommendations For versions prior to 8.2, update to version 8.2 or later to resolve the issue.

Exploit

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALT-PU-2022-1693

ALT-PU-2022-1711

ALT-PU-2022-1731

ALT-PU-2022-1771

AZL-8364

BDU:2022-05925

CVE-2022-0368

DLA-2947-1

DLA-3182-1

OESA-2022-1514

OPENSUSE-SU-2024:12337-1

USN-5458-1

USN-6026-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Apple Macos

Ubuntu

Vim

PT-2022-4851 · Vim+6 · Vim+6

CVE-2022-0368

Weakness Enumeration

Related Identifiers

Affected Products

References · 158