← Back to CVEs
CVE-2022-0156
MEDIUM5.5
Description
vim is vulnerable to Use After Free
CVE Details
CVSS v3.1 Score5.5
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Attack VectorLOCAL
ComplexityLOW
Privileges RequiredNONE
User InteractionREQUIRED
Published1/10/2022
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
apple:macosfedoraproject:fedoravim:vim
Weaknesses (CWE)
CWE-416CWE-416
References
http://seclists.org/fulldisclosure/2022/Jul/13(security@huntr.dev)
http://seclists.org/fulldisclosure/2022/Mar/29(security@huntr.dev)
http://www.openwall.com/lists/oss-security/2022/01/15/1(security@huntr.dev)
https://github.com/vim/vim/commit/9f1a39a5d1cd7989ada2d1cb32f97d84360e050f(security@huntr.dev)
https://huntr.dev/bounties/47dded34-3767-4725-8c7c-9dcb68c70b36(security@huntr.dev)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3FH2J57GDA2WMBS6J56F6QQRA6BXQQFZ/(security@huntr.dev)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HD5S2FC2HF22A7XQXK2XXIR46EARVWIM/(security@huntr.dev)
https://security.gentoo.org/glsa/202208-32(security@huntr.dev)
https://support.apple.com/kb/HT213183(security@huntr.dev)
https://support.apple.com/kb/HT213344(security@huntr.dev)
http://seclists.org/fulldisclosure/2022/Jul/13(af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2022/Mar/29(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2022/01/15/1(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/vim/vim/commit/9f1a39a5d1cd7989ada2d1cb32f97d84360e050f(af854a3a-2127-422b-91ae-364da2661108)
https://huntr.dev/bounties/47dded34-3767-4725-8c7c-9dcb68c70b36(af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3FH2J57GDA2WMBS6J56F6QQRA6BXQQFZ/(af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HD5S2FC2HF22A7XQXK2XXIR46EARVWIM/(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/202208-32(af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/kb/HT213183(af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/kb/HT213344(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.