GHSA-5q95-22v3-59qw

Опубликовано: 26 дек. 2021

Источник: github

Github: Не прошло ревью

CVSS3: 7.1

Описание

vim is vulnerable to Out-of-bounds Read

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2021-4166
https://github.com/vim/vim/commit/6f98371532fcff911b462d51bc64f2ce8a6ae682
https://huntr.dev/bounties/229df5dd-5507-44e9-832c-c70364bdf035
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2EY2VFBU3YGGWI5BW4XKT3F37MYGEQUD
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3FH2J57GDA2WMBS6J56F6QQRA6BXQQFZ
https://security.gentoo.org/glsa/202208-32
https://support.apple.com/kb/HT213183
https://support.apple.com/kb/HT213256
https://support.apple.com/kb/HT213343
http://seclists.org/fulldisclosure/2022/Jul/14
http://seclists.org/fulldisclosure/2022/Mar/29
http://seclists.org/fulldisclosure/2022/May/35
http://www.openwall.com/lists/oss-security/2022/01/15/1

EPSS

Процентиль: 57%

0.00351

Низкий

7.1 High

CVSS3

CVE ID

CVE-2021-4166

Дефекты

CWE-125

Связанные уязвимости

CVE-2021-4166

CVSS3: 7.1

ubuntu

около 4 лет назад

vim is vulnerable to Out-of-bounds Read

CVE-2021-4166

CVSS3: 7.1

redhat

около 4 лет назад

vim is vulnerable to Out-of-bounds Read

CVE-2021-4166

CVSS3: 7.1

nvd

около 4 лет назад

vim is vulnerable to Out-of-bounds Read

CVE-2021-4166

CVSS3: 7.1

msrc

около 4 лет назад

Описание отсутствует

CVE-2021-4166

CVSS3: 7.1

debian

около 4 лет назад

vim is vulnerable to Out-of-bounds Read

EPSS

Процентиль: 57%

0.00351

Низкий

7.1 High

CVSS3

CVE ID

CVE-2021-4166

Дефекты

CWE-125