CVE-2022-2000
published 2022-06-09CVE-2022-2000: Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
PriorityP338high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
1.53%
71.5th percentile
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | macos | < 11.7 | 11.7 |
| apple | macos | >= 12.0 < 12.6 | 12.6 |
| apple | macos_big_sur | — | — |
| apple | macos_monterey | — | — |
| apple | macos_ventura | — | — |
| debian | debian_linux | — | — |
| debian | vim | < vim 2:9.0.0135-1 (bookworm) | vim 2:9.0.0135-1 (bookworm) |
| fedoraproject | fedora | — | — |
| github.com | containrrr_shoutrrr | >= 0 < 0.6.0 | 0.6.0 |
| chrome_chrome | — | — | |
| vim | vim | < 8.2.5063 | 8.2.5063 |
| vim | vim | >= 0 < 2:8.2.2434-3+deb11u2 | 2:8.2.2434-3+deb11u2 |
| vim | vim | >= 0 < 2:9.0.0135-1 | 2:9.0.0135-1 |
| vim | vim | >= 0 < 2:9.0.0135-1 | 2:9.0.0135-1 |
| vim | vim | >= 0 < 2:9.0.0135-1 | 2:9.0.0135-1 |
| vim | vim | >= 0 < 2:8.1.2269-1ubuntu5.21 | 2:8.1.2269-1ubuntu5.21 |
| vim | vim | >= 0 < 2:8.2.3995-1ubuntu2.15 | 2:8.2.3995-1ubuntu2.15 |
| vim | vim | >= 0 < 2:7.4.052-1ubuntu3.1+esm15 | 2:7.4.052-1ubuntu3.1+esm15 |
| vim | vim | >= 0 < 2:7.4.1689-3ubuntu1.5+esm22 | 2:7.4.1689-3ubuntu1.5+esm22 |
| vim | vim | >= 0 < 2:8.0.1453-1ubuntu1.13+esm7 | 2:8.0.1453-1ubuntu1.13+esm7 |
| vim | vim_vim | >= unspecified < 8.2 | 8.2 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
vendor_ubuntu5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
vim vulnerabilities
osv·2023-12-14·CVSS 5.5
CVE-2022-1725 [MEDIUM] vim vulnerabilities
vim vulnerabilities
It was discovered that Vim could be made to dereference invalid memory. An
attacker could possibly use this issue to cause a denial of service. This
issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04
LTS. (CVE-2022-1725)
It was discovered that Vim could be made to recurse infinitely. An
attacker could possibly use this issue to cause a denial of service. This
issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS,
Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. (CVE-2022-1771)
It was discovered that Vim could be made to write out of bounds with a put
command. An attacker could possibly use this issue to cause a denial of
service or execute arbitrary code. This issue only affected Ubuntu 22.04
LTS. (CVE-2022-1886)
It was discovered tha
GHSA
Shoutrrr util package DoS via sending 2000, 4000, or 6000 character messages
ghsa·2022-07-16
CVE-2022-25891 [HIGH] CWE-400 Shoutrrr util package DoS via sending 2000, 4000, or 6000 character messages
Shoutrrr util package DoS via sending 2000, 4000, or 6000 character messages
The package `github.com/containrrr/shoutrrr/pkg/util` before 0.6.0 are vulnerable to Denial of Service (DoS) via the `util.PartitionMessage` function. Exploiting this vulnerability is possible by sending exactly 2000, 4000, or 6000 characters messages.
GHSA
GHSA-qvq4-qcc8-rqrf: Out-of-bounds Write in GitHub repository vim/vim prior to 8
ghsa_unreviewed·2022-06-10
CVE-2022-2000 [HIGH] CWE-787 GHSA-qvq4-qcc8-rqrf: Out-of-bounds Write in GitHub repository vim/vim prior to 8
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
OSV
CVE-2022-2000: Out-of-bounds Write in GitHub repository vim/vim prior to 8
osv·2022-06-09·CVSS 7.8
CVE-2022-2000 [HIGH] CVE-2022-2000: Out-of-bounds Write in GitHub repository vim/vim prior to 8
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
Chrome
Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2024-3841
vendor_chrome·2024-05-01·CVSS 6.1
CVE-2024-3841 [MEDIUM] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2024-3841
Stable Channel Update for ChromeOS / ChromeOS Flex
CVE-2024-3841: Insufficient data validation in Browser Switcher. Reported by Oleg on 2024-03-19 [$5000][ 40058873 ] Low CVE-2024-3844: Inappropriate implementation in Extensions
Reported by Alesandro Ortiz on 2022-02-23 [$2000][ 40064754 ] Low CVE-2024-3846: Inappropriate implementation in Prompts
Severity: medium
Ubuntu
Vim vulnerabilities
vendor_ubuntu·2023-12-14·CVSS 5.5
CVE-2023-48706 [MEDIUM] Vim vulnerabilities
Title: Vim vulnerabilities
Summary: Several security issues were fixed in Vim.
It was discovered that Vim could be made to dereference invalid memory. An
attacker could possibly use this issue to cause a denial of service. This
issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04
LTS. (CVE-2022-1725)
It was discovered that Vim could be made to recurse infinitely. An
attacker could possibly use this issue to cause a denial of service. This
issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS,
Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. (CVE-2022-1771)
It was discovered that Vim could be made to write out of bounds with a put
command. An attacker could possibly use this issue to cause a denial of
service or execute arbitrary code. This issue only affec
Chrome
Stable Channel Update for Desktop: CVE-2023-5485
vendor_chrome·2023-10-10·CVSS 4.3
CVE-2023-5485 [LOW] Stable Channel Update for Desktop: CVE-2023-5485
Stable Channel Update for Desktop
CVE-2023-5485: Inappropriate implementation in Autofill. Reported by Ahmed ElMasry on 2022-12-02 [$2000][ 1472404 ] Low CVE-2023-5478: Inappropriate implementation in Autofill
Reported by Shaheen Fazim on 2023-06-15 [$3000][ 1472558 ] Low CVE-2023-5477: Inappropriate implementation in Installer
Severity: low
Chrome
Stable Channel Update for Desktop: CVE-2023-7012
vendor_chrome·2023-09-12·CVSS 4.3
CVE-2023-7012 [MEDIUM] Stable Channel Update for Desktop: CVE-2023-7012
Stable Channel Update for Desktop
CVE-2023-7012: Insufficient data validation in Permission Prompts. Reported by koocola (@alo_cook) and Nan Wang (@eternalsakura13) of 360 Alpha Lab on 2022-10-28 [$6000][ 1449874 ] Low CVE-2023-4906: Insufficient policy enforcement in Autofill
Reported by Ahmed ElMasry on 2023-05-30 [$2000][ 1462104 ] Low CVE-2023-4907: Inappropriate implementation in Intents
Severity: medium
Chrome
Stable Channel Update for Desktop: CVE-2023-0696
vendor_chrome·2023-02-07·CVSS 8.8
CVE-2023-0696 [HIGH] Stable Channel Update for Desktop: CVE-2023-0696
Stable Channel Update for Desktop
CVE-2023-0696: Type Confusion in V8. Reported by Haein Lee at KAIST Hacking Lab on 2022-12-18 [$4000][ 1341541 ] High CVE-2023-0697: Inappropriate implementation in Full screen mode
Reported by Ahmed ElMasry on 2022-07-03 [$2000][ 1403573 ] High CVE-2023-0698: Out of bounds read in WebRTC
Severity: high
Chrome
Stable Channel Update for Desktop: CVE-2023-0134
vendor_chrome·2023-01-10·CVSS 8.8
CVE-2023-0134 [MEDIUM] Stable Channel Update for Desktop: CVE-2023-0134
Stable Channel Update for Desktop
CVE-2023-0134: Use after free in Cart. Reported by Chaoyuan Peng (@ret2happy) on 2022-11-17 [$2500][ 1385831 ] Medium CVE-2023-0135: Use after free in Cart
Reported by Chaoyuan Peng (@ret2happy) on 2022-11-18 [$2000][ 1356987 ] Medium CVE-2023-0136: Inappropriate implementation in Fullscreen API
Severity: medium
Chrome
Stable Channel Update for Desktop: CVE-2023-0138
vendor_chrome·2023-01-10·CVSS 8.8
CVE-2023-0138 [LOW] Stable Channel Update for Desktop: CVE-2023-0138
Stable Channel Update for Desktop
CVE-2023-0138: Heap buffer overflow in libphonenumber. Reported by Michael Dau on 2022-07-23 [$2000][ 1367632 ] Low CVE-2023-0139: Insufficient validation of untrusted input in Downloads
Reported by Axel Chong on 2022-09-24 [$1000][ 1326788 ] Low CVE-2023-0140: Inappropriate implementation in File System API
Severity: low
Chrome
Stable Channel Update for Desktop: CVE-2022-4189
vendor_chrome·2022-11-29·CVSS 4.3
CVE-2022-4189 [MEDIUM] Stable Channel Update for Desktop: CVE-2022-4189
Stable Channel Update for Desktop
CVE-2022-4189: Insufficient policy enforcement in DevTools. Reported by NDevTK on 2022-07-15 [$3000][ 1378997 ] Medium CVE-2022-4190: Insufficient data validation in Directory
Reported by Axel Chong on 2022-10-27 [$2000][ 1373941 ] Medium CVE-2022-4191: Use after free in Sign-In
Severity: medium
Chrome
Stable Channel Update for Desktop: CVE-2022-4174
vendor_chrome·2022-11-29·CVSS 8.8
CVE-2022-4174 [HIGH] Stable Channel Update for Desktop: CVE-2022-4174
Stable Channel Update for Desktop
CVE-2022-4174: Type Confusion in V8. Reported by Zhenghang Xiao (@Kipreyyy) on 2022-10-27 [$11000][ 1381401 ] High CVE-2022-4175: Use after free in Camera Capture
Reported by Leecraso and Guang Gong of 360 Vulnerability Research Institute on 2022-11-04 [$2000][ 1361066 ] High CVE-2022-4176: Out of bounds write in Lacros Graphics
Severity: high
Chrome
Stable Channel Update for Desktop: CVE-2022-3655
vendor_chrome·2022-10-25·CVSS 8.8
CVE-2022-3655 [MEDIUM] Stable Channel Update for Desktop: CVE-2022-3655
Stable Channel Update for Desktop
CVE-2022-3655: Heap buffer overflow in Media Galleries. Reported by koocola(@alo_cook) and Guang Gong of 360 Vulnerability Research Institute on 2022-07-11 [$3000][ 1345275 ] Medium CVE-2022-3656: Insufficient data validation in File System
Reported by Ron Masas, Imperva on 2022-07-18 [$2000][ 1351177 ] Medium CVE-2022-3657: Use after free in Extensions
Severity: medium
Apple
CVE-2022-2000: macOS Ventura 13
vendor_apple·2022-10-24·CVSS 7.8
CVE-2022-2000 [HIGH] CVE-2022-2000: macOS Ventura 13
Apple Security Update: About the security content of macOS Ventura 13
Product: macOS Ventura
Version: 13
CVE: CVE-2022-2000
Component: CVE-2022-2000
Chrome
Stable Channel Update for Desktop: CVE-2022-3316
vendor_chrome·2022-09-27·CVSS 4.3
CVE-2022-3316 [LOW] Stable Channel Update for Desktop: CVE-2022-3316
Stable Channel Update for Desktop
CVE-2022-3316: Insufficient validation of untrusted input in Safe Browsing. Reported by Sven Dysthe (@svn_dy) on 2022-06-07 [$2000][ 1300539 ] Low CVE-2022-3317: Insufficient validation of untrusted input in Intents
Reported by Hafiizh on 2022-02-24 [$TBD][ 1318791 ] Low CVE-2022-3318: Use after free in ChromeOS Notifications
Severity: low
Apple
CVE-2022-2000: macOS Monterey 12.6
vendor_apple·2022-09-12·CVSS 7.8
CVE-2022-2000 [HIGH] CVE-2022-2000: macOS Monterey 12.6
Apple Security Update: About the security content of macOS Monterey 12.6
Product: macOS Monterey
Version: 12.6
CVE: CVE-2022-2000
Component: CVE-2022-2000
Apple
CVE-2022-2000: macOS Big Sur 11.7
vendor_apple·2022-09-12·CVSS 7.8
CVE-2022-2000 [HIGH] CVE-2022-2000: macOS Big Sur 11.7
Apple Security Update: About the security content of macOS Big Sur 11.7
Product: macOS Big Sur
Version: 11.7
CVE: CVE-2022-2000
Component: CVE-2022-2000
Chrome
Stable Channel Update for Desktop: CVE-2022-3049
vendor_chrome·2022-08-30·CVSS 8.8
CVE-2022-3049 [MEDIUM] Stable Channel Update for Desktop: CVE-2022-3049
Stable Channel Update for Desktop
CVE-2022-3049: Use after free in SplitScreen. Reported by @ginggilBesel on 2022-04-17 [$3000][ 1337132 ] Medium CVE-2022-3050: Heap buffer overflow in WebUI
Reported by Zhihua Yao of KunLun Lab on 2022-06-17 [$2000][ 1345245 ] Medium CVE-2022-3051: Heap buffer overflow in Exosphere
Severity: medium
Chrome
Stable Channel Update for Desktop: CVE-2022-3055
vendor_chrome·2022-08-30·CVSS 8.8
CVE-2022-3055 [MEDIUM] Stable Channel Update for Desktop: CVE-2022-3055
Stable Channel Update for Desktop
CVE-2022-3055: Use after free in Passwords. Reported by Weipeng Jiang (@Krace) and Guang Gong of 360 Vulnerability Research Institute on 2022-08-11 [$3000][ 1329460 ] Low CVE-2022-3056: Insufficient policy enforcement in Content Security Policy
Reported by Anonymous on 2022-05-26 [$2000][ 1336904 ] Low CVE-2022-3057: Inappropriate implementation in iframe Sandbox
Severity: medium
Chrome
Stable Channel Update for Desktop: CVE-2022-2618
vendor_chrome·2022-08-02·CVSS 6.5
CVE-2022-2618 [MEDIUM] Stable Channel Update for Desktop: CVE-2022-2618
Stable Channel Update for Desktop
CVE-2022-2618: Insufficient validation of untrusted input in Internals. Reported by asnine on 2022-03-21 [$2000][ 1332881 ] Medium CVE-2022-2619: Insufficient validation of untrusted input in Settings
Reported by Oliver Dunk on 2022-06-04 [$2000][ 1337304 ] Medium CVE-2022-2620: Use after free in WebUI
Severity: medium
Chrome
Stable Channel Update for Desktop: CVE-2022-2613
vendor_chrome·2022-08-02·CVSS 8.8
CVE-2022-2613 [MEDIUM] Stable Channel Update for Desktop: CVE-2022-2613
Stable Channel Update for Desktop
CVE-2022-2613: Use after free in Input. Reported by Piotr Tworek (Vewd) on 2022-05-13 [$5000][ 1341907 ] Medium CVE-2022-2614: Use after free in Sign-In Flow
Reported by raven at KunLun lab on 2022-07-05 [$2000][ 1232402 ] Medium CVE-2022-4914: Heap buffer overflow in PrintPreview
Severity: medium
Ubuntu
Vim vulnerabilities
vendor_ubuntu·2022-07-13
CVE-2022-2210 Vim vulnerabilities
Title: Vim vulnerabilities
Summary: Several security issues were fixed in Vim.
It was discovered that Vim incorrectly handled memory access. An attacker
could potentially use this issue to cause the corruption of sensitive
information, a crash, or arbitrary code execution.
Instructions: In general, a standard system update will make all the necessary changes.
Chrome
Stable Channel Update for Desktop: CVE-2022-2161
vendor_chrome·2022-06-21·CVSS 8.8
CVE-2022-2161 [MEDIUM] Stable Channel Update for Desktop: CVE-2022-2161
Stable Channel Update for Desktop
CVE-2022-2161: Use after free in WebApp Provider. Reported by Zhihua Yao of KunLun Lab on 2022-05-30 [$2000][ 1307930 ] Medium CVE-2022-2162: Insufficient policy enforcement in File System API
Reported by Abdelhamid Naceri (halov) on 2022-03-19 [$ 3000][ 1311683 ] Low CVE-2022-4917: Incorrect security UI in Notifications
Severity: medium
Red Hat
vim: out-of-bounds write in function append_command
vendor_redhat·2022-06-09·CVSS 7.8
CVE-2022-2000 [HIGH] CWE-787 vim: out-of-bounds write in function append_command
vim: out-of-bounds write in function append_command
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
An out-of-bounds write vulnerability was found in Vim's append_command() function of the src/ex_docmd.c file. This issue occurs when an error for a command goes over the end of IObuff. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a heap buffer overflow that causes an application to crash and corrupt memory.
Statement: All versions of Vim shipped with Red Hat Enterprise Linux are not affected, because vulnerable code is not present in our code-base.
Red Hat Product Security has rated this issue as having a Low security impact because the "victim" has to run an untrusted file IN SCRIPT MODE. Someone who is running untrusted fi
Chrome
Stable Channel Update for Desktop: CVE-2022-1856
vendor_chrome·2022-05-24·CVSS 8.8
CVE-2022-1856 [HIGH] Stable Channel Update for Desktop: CVE-2022-1856
Stable Channel Update for Desktop
CVE-2022-1856: Use after free in User Education. Reported by Nan Wang(@eternalsakura13) and Guang Gong of 360 Alpha Lab on 2022-05-06 [$2000][ 1227995 ] High CVE-2022-1857: Insufficient policy enforcement in File System API
Reported by Daniel Rhea on 2021-07-11 [$1000][ 1314310 ] High CVE-2022-1858: Out of bounds read in DevTools
Severity: high
Chrome
Stable Channel Update for Desktop: CVE-2022-1136
vendor_chrome·2022-03-29·CVSS 8.8
CVE-2022-1136 [MEDIUM] Stable Channel Update for Desktop: CVE-2022-1136
Stable Channel Update for Desktop
CVE-2022-1136: Use after free in Tab Strip . Reported by Krace on 2021-12-15 [$5000][ 1289846 ] Medium CVE-2022-1137: Inappropriate implementation in Extensions
Reported by Thomas Orlita on 2022-01-22 [$2000][ 1246188 ] Medium CVE-2022-1138: Inappropriate implementation in Web Cursor
Severity: medium
Chrome
Stable Channel Update for Desktop: CVE-2022-0803
vendor_chrome·2022-03-01·CVSS 6.5
CVE-2022-0803 [MEDIUM] Stable Channel Update for Desktop: CVE-2022-0803
Stable Channel Update for Desktop
CVE-2022-0803: Inappropriate implementation in Permissions. Reported by Abdulla Aldoseri on 2021-12-15 [$2500][ 1264561 ] Medium CVE-2022-0804: Inappropriate implementation in Full screen mode
Reported by Irvan Kurniawan (sourc7) on 2021-10-29 [$2000][ 1290700 ] Medium CVE-2022-0805: Use after free in Browser Switcher
Severity: medium
Debian
CVE-2022-2000: vim - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
vendor_debian·2022·CVSS 7.8
CVE-2022-2000 [HIGH] CVE-2022-2000: vim - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
Scope: local
bookworm: resolved (fixed in 2:9.0.0135-1)
bullseye: resolved (fixed in 2:8.2.2434-3+deb11u2)
forky: resolved (fixed in 2:9.0.0135-1)
sid: resolved (fixed in 2:9.0.0135-1)
trixie: resolved (fixed in 2:9.0.0135-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://seclists.org/fulldisclosure/2022/Oct/28http://seclists.org/fulldisclosure/2022/Oct/41http://seclists.org/fulldisclosure/2022/Oct/43http://seclists.org/fulldisclosure/2022/Oct/45https://github.com/vim/vim/commit/44a3f3353e0407e9fffee138125a6927d1c9e7e5https://huntr.dev/bounties/f61a64e2-d163-461b-a77e-46ab38e021f0https://lists.debian.org/debian-lts-announce/2022/11/msg00032.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4JJNUS4AEVYSEJMCK6JZB57QHD5V2G4O/https://security.gentoo.org/glsa/202208-32https://security.gentoo.org/glsa/202305-16https://support.apple.com/kb/HT213443https://support.apple.com/kb/HT213444https://support.apple.com/kb/HT213488http://seclists.org/fulldisclosure/2022/Oct/28http://seclists.org/fulldisclosure/2022/Oct/41http://seclists.org/fulldisclosure/2022/Oct/43http://seclists.org/fulldisclosure/2022/Oct/45https://github.com/vim/vim/commit/44a3f3353e0407e9fffee138125a6927d1c9e7e5https://huntr.dev/bounties/f61a64e2-d163-461b-a77e-46ab38e021f0https://lists.debian.org/debian-lts-announce/2022/11/msg00032.htmlhttps://lists.debian.org/debian-lts-announce/2025/03/msg00023.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4JJNUS4AEVYSEJMCK6JZB57QHD5V2G4O/https://security.gentoo.org/glsa/202208-32https://security.gentoo.org/glsa/202305-16https://support.apple.com/kb/HT213443https://support.apple.com/kb/HT213444https://support.apple.com/kb/HT213488
2022-06-09
Published