CVE-2021-3872
Description
vim is vulnerable to Heap-based Buffer Overflow
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.155
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2021-3872 are affected in Vim 8.2.3486 | Windows |
| Vi IMproved - enhanced vi editor (USN-5147-1) vim_8.0.1453-1ubuntu1.7_i386.deb | Linux |
| Vi IMproved - enhanced vi editor (USN-5147-1) vim_8.0.1453-1ubuntu1.7_amd64.deb | Linux |
| Vi IMproved - enhanced vi editor (USN-5147-1) vim_8.1.2269-1ubuntu5.4_i386.deb | Linux |
| Vi IMproved - enhanced vi editor (USN-5147-1) vim_8.1.2269-1ubuntu5.4_amd64.deb | Linux |
| Vi IMproved - enhanced vi editor (USN-5147-1) vim_8.2.2434-1ubuntu1.3_i386.deb | Linux |
| Vi IMproved - enhanced vi editor (USN-5147-1) vim_8.2.2434-1ubuntu1.3_amd64.deb | Linux |
| Vi IMproved - enhanced vi editor (USN-5147-1) vim_8.2.2434-3ubuntu3.1_i386.deb | Linux |
| Vi IMproved - enhanced vi editor (USN-5147-1) vim_8.2.2434-3ubuntu3.1_amd64.deb | Linux |
| Vim-X11 update (ELSA-2022-0366) vim-X11-8.0.1763-16.0.1.el8_5.4.x86_64.rpm | Linux |
| Vim-common update (ELSA-2022-0366) vim-common-8.0.1763-16.0.1.el8_5.4.x86_64.rpm | Linux |
| Vim-enhanced update (ELSA-2022-0366) vim-enhanced-8.0.1763-16.0.1.el8_5.4.x86_64.rpm | Linux |
| Vim-filesystem update (ELSA-2022-0366) vim-filesystem-8.0.1763-16.0.1.el8_5.4.noarch.rpm | Linux |
| Vim-minimal update (ELSA-2022-0366) vim-minimal-8.0.1763-16.0.1.el8_5.4.x86_64.rpm | Linux |
| Vim-X11 update (ELSA-2022-5319) vim-X11-8.0.1763-19.0.1.el8_6.2.x86_64.rpm | Linux |
| Vim-common update (ELSA-2022-5319) vim-common-8.0.1763-19.0.1.el8_6.2.x86_64.rpm | Linux |
| Vim-enhanced update (ELSA-2022-5319) vim-enhanced-8.0.1763-19.0.1.el8_6.2.x86_64.rpm | Linux |
| Vim-filesystem update (ELSA-2022-5319) vim-filesystem-8.0.1763-19.0.1.el8_6.2.noarch.rpm | Linux |
| Vim-minimal update (ELSA-2022-5319) vim-minimal-8.0.1763-19.0.1.el8_6.2.x86_64.rpm | Linux |
| SUSE-SU-2022:4619-1(SUSE Linux Enterprise Server 12-SP5 ) gvim-9.0.0814-17.9.1.x86_64.rpm | Linux |
| SUSE-SU-2022:4619-1(SUSE Linux Enterprise Server 12-SP5 ) gvim-debuginfo-9.0.0814-17.9.1.x86_64.rpm | Linux |
| SUSE-SU-2022:4619-1(SUSE Linux Enterprise Server 12-SP5 ) vim-data-9.0.0814-17.9.1.noarch.rpm | Linux |
| SUSE-SU-2022:4619-1(SUSE Linux Enterprise Server 12-SP5 ) vim-data-common-9.0.0814-17.9.1.noarch.rpm | Linux |
| SUSE-SU-2022:4619-1(SUSE Linux Enterprise Server 12-SP5 ) vim-debugsource-9.0.0814-17.9.1.x86_64.rpm | Linux |
| SUSE-SU-2022:2102-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) vim-8.2.5038-150000.5.21.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2022:2102-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) vim-small-8.2.5038-150000.5.21.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2022:2102-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) vim-data-8.2.5038-150000.5.21.1.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2022:2102-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) vim-data-common-8.2.5038-150000.5.21.1.noarch_15_SP3.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234