VIM » VIM : Security Vulnerabilities, CVEs, CVSS score >= 6

Vim before 9.0.2142 has a stack-based buffer overflow because did_set_langmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions.

Use After Free in GitHub repository vim/vim prior to v9.0.2010.

NULL Pointer Dereference in GitHub repository vim/vim prior to 20d161ace307e28690229b68584f2d84556f8960.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.

Use After Free in GitHub repository vim/vim prior to 9.0.1858.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1331.

Use After Free in GitHub repository vim/vim prior to 9.0.1857.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1848.

Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.

Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.

Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846.

Use After Free in GitHub repository vim/vim prior to 9.0.1840.

Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3

Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1532.

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531.

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499.

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1402.

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1392.

Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376.

Divide By Zero in GitHub repository vim/vim prior to 9.0.1367.

Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189.