Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-01-18
vim is vulnerable to Use After Free
CVSS Score
6.8
EPSS Score
0.002
Published
2022-01-10
vim is vulnerable to Heap-based Buffer Overflow
CVSS Score
6.8
EPSS Score
0.002
Published
2022-01-10
vim is vulnerable to Out-of-bounds Read
CVSS Score
7.1
EPSS Score
0.003
Published
2022-01-06
vim is vulnerable to Out-of-bounds Read
CVSS Score
5.5
EPSS Score
0.006
Published
2021-12-31
vim is vulnerable to Use After Free
CVSS Score
5.5
EPSS Score
0.006
Published
2021-12-31
vim is vulnerable to Use After Free
CVSS Score
6.8
EPSS Score
0.003
Published
2021-12-29
vim is vulnerable to Use After Free
CVSS Score
6.8
EPSS Score
0.003
Published
2021-12-27
vim is vulnerable to Out-of-bounds Read
CVSS Score
7.1
EPSS Score
0.004
Published
2021-12-25
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included).
CVSS Score
8.2
EPSS Score
0.11
Published
2021-12-20