CVE-2022-3278

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.0.0552

Description The issue is related to a null pointer dereference error when handling the eval1 frame in the Vim text editor. This could potentially allow a remote attacker to cause a denial of service.

Recommendations For versions prior to 9.0.0552, update to version 9.0.0552 or later to resolve the issue.

Exploit

Fix

NULL Pointer Dereference

Buffer Overflow

Memory Corruption

Use After Free

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476CWE-119CWE-787CWE-416CWE-121

Related Identifiers

ALT-PU-2022-2828

ALT-PU-2022-2911

ALT-PU-2022-2914

ALT-PU-2022-3192

AZL-11018

BDU:2022-06177

BDU:2022-06178

BDU:2022-06179

BDU:2022-06180

CVE-2022-3278

MGASA-2022-0430

OPENSUSE-SU-2022_4282-1

SUSE-SU-2022:4282-1

SUSE-SU-2022:4619-1

USN-6420-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Red Os

Suse

Ubuntu

Vim

CVE-2022-3278

Weakness Enumeration

Related Identifiers

Affected Products

References · 290