Описание
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
Ссылки
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- PatchThird Party Advisory
- Release NotesThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- PatchThird Party Advisory
- Release NotesThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 8.1.0881 (исключая)
cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
Конфигурация 4
Одно из
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
Конфигурация 5
Одно из
cpe:2.3:o:apple:mac_os_x:10.13.6:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.14.6:*:*:*:*:*:*:*
Конфигурация 6
Одно из
cpe:2.3:a:starwindsoftware:command_center:2:build_6003:*:*:*:*:*:*
cpe:2.3:a:starwindsoftware:san_\&_nas:1.0:update_1:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00206
Низкий
5.3 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 5.3
ubuntu
больше 5 лет назад
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
CVSS3: 5.3
redhat
почти 6 лет назад
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
CVSS3: 5.3
debian
больше 5 лет назад
In Vim before 8.1.0881, users can circumvent the rvim restricted mode ...
EPSS
Процентиль: 43%
0.00206
Низкий
5.3 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-78