← back
CVE-2023-5344

Heap-based Buffer Overflow in vim/vim

CVSS 4 MEDIUMEPSS 1.2%CWE-122
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969.
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
vim · vim/vim

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://seclists.org/fulldisclosure/2023/Dec/10http://seclists.org/fulldisclosure/2023/Dec/11http://seclists.org/fulldisclosure/2023/Dec/9https://github.com/vim/vim/commit/3bd7fa12e146c6051490d048a4acbfba974eeb04https://huntr.dev/bounties/530cb762-899e-48d7-b50e-dad09eb775bfhttps://lists.debian.org/debian-lts-announce/2025/03/msg00023.htmlhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4W665GQBN6S6ZDMYWVF4X7KMFI7AQKJL/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XPT7NMYJRLBPIALGSE24UWTY6F774GZW/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZOXBUJLJ5VSPN3YXWN7XZA4JDYKNE7GZ/https://support.apple.com/kb/HT214036https://support.apple.com/kb/HT214037https://support.apple.com/kb/HT214038