CVE-2023-0288

Опубликовано: 12 янв. 2023

Источник: redhat

CVSS3: 7.3

EPSS Низкий

Описание

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189.

Отчет

Red Hat Product Security has rated this issue as having a Low security impact because the user has to run an untrusted file IN SCRIPT MODE. Someone who is running untrusted files in script mode is equivalent to someone just taking a random python script and running it.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 7	vim	Fix deferred
Red Hat Enterprise Linux 8	vim	Fix deferred
Red Hat Enterprise Linux 9	vim	Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-122

https://bugzilla.redhat.com/show_bug.cgi?id=2163130vim: a heap-based buffer overflow

EPSS

Процентиль: 7%

0.00027

Низкий

7.3 High

CVSS3

Связанные уязвимости

CVE-2023-0288

CVSS3: 7.8

ubuntu

около 3 лет назад

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189.

CVE-2023-0288

CVSS3: 7.8

nvd

около 3 лет назад

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189.

CVE-2023-0288

CVSS3: 7.8

msrc

почти 3 года назад

Heap-based Buffer Overflow in vim/vim

CVE-2023-0288

CVSS3: 7.8

debian

около 3 лет назад

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ...

GHSA-vr7q-737x-h8wj

CVSS3: 7.8

github

около 3 лет назад

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189.

EPSS

Процентиль: 7%

0.00027

Низкий

7.3 High

CVSS3