CVE-2021-4136Heap-based Buffer Overflow in VIM

CWE-122Heap-based Buffer OverflowCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents5 sources
Severity
7.8HIGHCNA
No vector
EPSS
0.3%
top 46.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
VIM VIM
Timeline
PublishedDec 19
Latest updateJul 20

Description

Heap-based Buffer Overflow in vim/vim vim is vulnerable to Heap-based Buffer Overflow

Affected Packages1 packages

CVEListV5vim/vim_vimunspecified8.2.3846

🔴Vulnerability Details

1
CVEList
Heap-based Buffer Overflow in vim/vim2021-12-19

📋Vendor Advisories

6
Apple
CVE-2021-4136: Security Update 2022-005 Catalina2022-07-20
Apple
CVE-2021-4136: macOS Big Sur 11.6.62022-05-16
Apple
CVE-2021-4136: macOS Monterey 12.32022-03-14
Red Hat
vim: heap-based buffer overflow in eval_lambda() in src/eval.c2021-12-19
Microsoft
Heap-based Buffer Overflow in vim/vim2021-12-14
CVE-2021-4136 — Heap-based Buffer Overflow in VIM VIM | cvebase