CVE-2019-20807
- EPSS 0.49%
- Veröffentlicht 28.05.2020 14:15:11
- Zuletzt bearbeitet 21.11.2024 04:39:24
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
CVE-2019-20079
- EPSS 1.89%
- Veröffentlicht 30.12.2019 01:15:12
- Zuletzt bearbeitet 21.11.2024 04:38:01
The autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory.
CVE-2019-12735
- EPSS 19.11%
- Veröffentlicht 05.06.2019 14:29:11
- Zuletzt bearbeitet 11.11.2025 17:15:34
getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim.
CVE-2017-17087
- EPSS 0.36%
- Veröffentlicht 01.12.2017 08:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group (which may be different from the group ownership of the original file), which allows local users to obtain sensitive information by leveraging an ...
CVE-2017-1000382
- EPSS 0.38%
- Veröffentlicht 31.10.2017 20:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
VIM version 8.0.1187 (and other versions most likely) ignores umask when creating a swap file ("[ORIGINAL_FILENAME].swp") resulting in files that may be world readable or otherwise accessible in ways not intended by the user running the vi binary.
CVE-2017-11109
- EPSS 1.09%
- Veröffentlicht 08.07.2017 17:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Vim 8.0 allows attackers to cause a denial of service (invalid free) or possibly have unspecified other impact via a crafted source (aka -S) file. NOTE: there might be a limited number of scenarios in which this has security relevance.
CVE-2017-6349
- EPSS 2.74%
- Veröffentlicht 27.02.2017 07:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.
CVE-2017-6350
- EPSS 3.39%
- Veröffentlicht 27.02.2017 07:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.
CVE-2017-5953
- EPSS 2.83%
- Veröffentlicht 10.02.2017 07:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.
CVE-2016-1248
- EPSS 25.31%
- Veröffentlicht 23.11.2016 15:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened.