Bram Moolenaar

124 exploits Active since Feb 2017
CVE-2017-17087 WRITEUP MEDIUM WRITEUP
Vim <8.0.1263 - Info Disclosure
fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group (which may be different from the group ownership of the original file), which allows local users to obtain sensitive information by leveraging an applicable group membership, as demonstrated by /etc/shadow owned by root:shadow mode 0640, but /etc/.shadow.swp owned by root:users mode 0640, a different vulnerability than CVE-2017-1000382.
CVSS 5.5
CVE-2017-5953 WRITEUP CRITICAL WRITEUP
Vim < 8.0.0055 - Integer Overflow
vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.
CVSS 9.8
CVE-2017-6349 WRITEUP CRITICAL WRITEUP
Vim < 8.0.0376 - Integer Overflow
An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.
CVSS 9.8
CVE-2017-6350 WRITEUP CRITICAL WRITEUP
Vim < 8.0.0377 - Integer Overflow
An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.
CVSS 9.8
CVE-2018-20786 WRITEUP HIGH WRITEUP
Leonerd Libvterm < 0\+bzr726 - NULL Pointer Dereference
libvterm through 0+bzr726, as used in Vim and other products, mishandles certain out-of-memory conditions, leading to a denial of service (application crash), related to screen.c, state.c, and vterm.c.
CVSS 7.5
CVE-2019-20079 WRITEUP HIGH WRITEUP
Vim < 8.1.2136 - Use After Free
The autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory.
CVSS 7.8
CVE-2019-20807 WRITEUP MEDIUM WRITEUP
Vim < 8.1.0881 - OS Command Injection
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
CVSS 5.3
CVE-2021-3770 WRITEUP HIGH WRITEUP
vim - Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
CVSS 7.8
CVE-2021-3778 WRITEUP HIGH WRITEUP
vim - Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
CVSS 7.8
CVE-2021-3796 WRITEUP HIGH WRITEUP
vim - Use After Free
vim is vulnerable to Use After Free
CVSS 7.3
CVE-2021-3872 WRITEUP HIGH WRITEUP
vim - Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
CVSS 7.8
CVE-2021-3875 WRITEUP MEDIUM WRITEUP
vim - Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
CVSS 5.5
CVE-2021-3903 WRITEUP HIGH WRITEUP
Vim < 8.2.3564 - Out-of-Bounds Write
vim is vulnerable to Heap-based Buffer Overflow
CVSS 7.8
CVE-2021-3927 WRITEUP HIGH WRITEUP
Vim < 8.2.3581 - Out-of-Bounds Write
vim is vulnerable to Heap-based Buffer Overflow
CVSS 7.8
CVE-2021-3928 WRITEUP HIGH WRITEUP
Vim < 8.2.3582 - Use of Uninitialized Resource
vim is vulnerable to Use of Uninitialized Variable
CVSS 7.8
CVE-2021-3968 WRITEUP HIGH WRITEUP
Vim < 8.2.3610 - Out-of-Bounds Write
vim is vulnerable to Heap-based Buffer Overflow
CVSS 8.0
CVE-2021-3973 WRITEUP HIGH WRITEUP
Vim < 8.2.3611 - Out-of-Bounds Write
vim is vulnerable to Heap-based Buffer Overflow
CVSS 7.8
CVE-2021-3974 WRITEUP HIGH WRITEUP
Vim < 8.2.3612 - Use After Free
vim is vulnerable to Use After Free
CVSS 7.8
CVE-2021-3984 WRITEUP HIGH WRITEUP
Vim < 8.2.3625 - Out-of-Bounds Write
vim is vulnerable to Heap-based Buffer Overflow
CVSS 7.8
CVE-2021-4136 WRITEUP HIGH WRITEUP
Apple Mac OS X < 8.2.3847 - Out-of-Bounds Write
vim is vulnerable to Heap-based Buffer Overflow
CVSS 7.8
CVE-2021-4166 WRITEUP HIGH WRITEUP
Vim < 8.2.3884 - Out-of-Bounds Read
vim is vulnerable to Out-of-bounds Read
CVSS 7.1
CVE-2021-4173 WRITEUP HIGH WRITEUP
Vim < 8.2.3902 - Use After Free
vim is vulnerable to Use After Free
CVSS 7.8
CVE-2021-4187 WRITEUP HIGH WRITEUP
Vim < 8.2.3912 - Use After Free
vim is vulnerable to Use After Free
CVSS 7.8
CVE-2022-0213 WRITEUP MEDIUM WRITEUP
vim - Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
CVSS 6.6
CVE-2022-0261 WRITEUP HIGH WRITEUP
vim/vim <8.2 - Buffer Overflow
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVSS 7.8