Home > Vulnerability Database > CVE-2022-2571

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2022-2571

Good to know:

Date: August 1, 2022

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101.

Language: VIM SCRIPT

Severity Score

7.8

Related Resources (7)

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-2571

Url: https://github.com/vim/vim/commit/a6f9e300161f4cb54713da22f65b261595e8e614

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2022-2571

Url: https://huntr.dev/bounties/2e5a1dc4-2dfb-4e5f-8c70-e1ede21f3571

Url: https://security-tracker.debian.org/tracker/CVE-2022-2571

Url: https://access.redhat.com/security/cve/CVE-2022-2571

Url: https://www.mend.io/vulnerability-database/CVE-2022-2571

Severity Score

7.8

Weakness Type (CWE)

Heap-based Buffer Overflow

CWE-122

Top Fix

Upgrade Version

Upgrade to version v9.0.0102

CVSS v3.1

Base Score:	7.8
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Do you need more information?

Contact Us