VIM : Security Vulnerabilities, CVEs, (Information Leak)
VIM version 8.0.1187 (and other versions most likely) ignores umask when creating a swap file ("[ORIGINAL_FILENAME].swp") resulting in files that may be world readable or otherwise accessible in ways not intended by the user running the vi binary.
Max CVSS
5.5
EPSS Score
0.04%
Published
2017-10-31
Updated
2017-11-27
1 vulnerabilities found