CVE-2023-4735
HIGH EPSS 45.4%
Published Sep 2, 20232y ago ยท Modified Jun 23, 20261w ago
7.8 CVSS 3.1
Published Sep 2, 2023 2y ago
Last Modified Jun 23, 2026 1w ago
Description
Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Attack Vector Local
Attack Complexity Low
Privileges Required None
User Interaction Required
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
EPSS Exploit Probability
45.4% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available
Weaknesses 1
CWE-787 Out-of-bounds Write Memory Safety
Affected Products 2
References 4
- seclists.org http://seclists.org/fulldisclosure/2023/Oct/24
- github.com https://github.com/vim/vim/commit/889f6af37164775192e33b233a90e86fd3df0f57
- huntr.dev https://huntr.dev/bounties/fc83bde3-f621-42bd-aecb-8c1ae44cba51
- support.apple.com https://support.apple.com/kb/HT213984
Remediation
- github.com https://github.com/vim/vim/commit/889f6af37164775192e33b233a90e86fd3df0f57
- huntr.dev https://huntr.dev/bounties/fc83bde3-f621-42bd-aecb-8c1ae44cba51