Vulnerability Details : CVE-2023-3896
Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3
Products affected by CVE-2023-3896
- cpe:2.3:a:vim:vim:9.0.1367:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-3896
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 24 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-3896
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST | |
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
OpenCloudOS Community |
CWE ids for CVE-2023-3896
-
The product divides a value by zero.Assigned by:
- nvd@nist.gov (Primary)
- security@opencloudos.tech (Secondary)
References for CVE-2023-3896
-
https://github.com/vim/vim/issues/12528
Divide-by-zero vulnerability in function `scroll_cursor_bot` · Issue #12528 · vim/vim · GitHubExploit;Issue Tracking;Patch;Vendor Advisory
-
https://github.com/vim/vim/pull/12540
Fix divide-by-zero vulnerability in scroll_cursor_bot. by fullwaywang · Pull Request #12540 · vim/vim · GitHubPatch;Vendor Advisory
-
https://security.netapp.com/advisory/ntap-20230831-0012/
CVE-2023-3896 Vim Vulnerability in NetApp Products | NetApp Product Security
Jump to