Bounties
Partners
Community
Info
vim / vim
Project repository
The official Vim repository
Submit a report
FIRST INTERACTION
WITHIN
1 DAY
REVIEW
WITHIN
29 DAYS
FIX
WITHIN
20 DAYS
heap-buffer-overflow in function utf_head_off
Oct 15th 2023
soaarony
•
self closed
Restricted vim sandbox escape
Oct 26th 2023
parrot409
•
Medium
Medium
heap-use-after-free in function editing_arg_idx
Oct 11th 2023
soaarony
•
High
High
•
CVE-2023-5535
CVE-2023-5535
Off-By-One
Oct 11th 2023
coolkingcole
•
self closed
Heap BoF in trunc_string()
Oct 2nd 2023
coolkingcole
•
Medium
Medium
•
CVE-2023-5344
CVE-2023-5344
CWE-476 leads to potential OOB Read
Oct 5th 2023
coolkingcole
•
Medium
Medium
•
CVE-2023-5441
CVE-2023-5441
heap-buffer-overflow in function utf_ptr2char
Oct 2nd 2023
soaarony
•
not applicable
heap-buffer-overflow in function vim_regsub_both
Sep 5th 2023
soaarony
•
High
High
•
CVE-2023-4781
CVE-2023-4781
segmentation fault in function f_fullcommand
Sep 2nd 2023
fizz-is-on-the-way
•
High
High
•
CVE-2023-4734
CVE-2023-4734
Heap-use-after-free in function buflist_altfpos in vim
Sep 2nd 2023
fizz-is-on-the-way
•
High
High
•
CVE-2023-4733
CVE-2023-4733
Vim's embedded terminal allows injection via DECRQSS response
Sep 2nd 2023
dgl
•
High
High
Arbitrary command execution on Windows
Sep 2nd 2023
stsewd
•
High
High
•
CVE-2023-4736
CVE-2023-4736
Divide-by-zero vulnerability in function `scroll_cursor_bot`
Jun 15th 2023
fullwaywang
•
self closed
OOB Write ops.c
Sep 2nd 2023
coolkingcole
•
Medium
Medium
•
CVE-2023-4735
CVE-2023-4735
Restricted shell escape in RVIM
May 19th 2023
mv-00
•
High
High
Undefined behavior after using a specific POC
Sep 2nd 2023
zwuga
•
informative
High
heap-buffer-overflow in vim_regsub_both
Sep 2nd 2023
hikari446
•
High
High
•
CVE-2023-4738
CVE-2023-4738
Null pointer dereference in get_register at register.c:311
May 9th 2023
thkim0
•
High
High
•
CVE-2023-2609
CVE-2023-2609
REFLECTED XSS "Cross-site Scripting (XSS) "
Mar 20th 2023
abdolzx
•
Medium
Medium
heap-buffer-overflow in vim_strrchr
Sep 2nd 2023
hikari446
•
High
High
global-buffer-overflow in utf_ptr2char
Sep 3rd 2023
hikari446
•
informative
High
Heap-based Buffer Overflow in function ins_str
Sep 3rd 2023
khoanguyenxuan
•
informative
High
null pointer dereference in class_object_index at vim9class.c:1356
Mar 11th 2023
thkim0
•
High
High
•
CVE-2023-1355
CVE-2023-1355
Integer Overflow or Wraparound in yank_copy_line
Mar 6th 2023
janette88
•
self closed
heap-buffer-overflow in utf_ptr2char
Mar 3rd 2023
janette88
•
High
High
•
CVE-2023-1170
CVE-2023-1170
segmentation fault in regexp.c:1788
May 9th 2023
thkim0
•
High
High
•
CVE-2023-2610
CVE-2023-2610
Out-of-bounds Write in function vim_regsub_both
Sep 3rd 2023
soaarony
•
duplicate
High
division zero
Mar 1st 2023
thkim0
•
High
High
•
CVE-2023-1127
CVE-2023-1127
Out-of-bounds Read in function vim_strrchr
May 20th 2023
soaarony
•
self closed
Use After Free in function mb_charlen
Sep 5th 2023
ongk0077
•
informative
High
heap-use-after-free in function bt_quickfix
Sep 3rd 2023
soaarony
•
High
High
•
CVE-2023-4750
CVE-2023-4750
global-buffer-overflow in function utf_ptr2char
Sep 5th 2023
soaarony
•
not applicable
NULL Pointer Dereference in function utfc_ptr2len
Mar 7th 2023
khoanguyenxuan
•
Medium
Medium
•
CVE-2023-1264
CVE-2023-1264
Out of Range Pointer offset in mb_charlen of mbyte.c
Apr 29th 2023
ongk0077
•
Medium
Medium
•
CVE-2023-2426
CVE-2023-2426
Use of Out-of-range Pointer Offset in function utf_head_off
Sep 5th 2023
jieyongma
•
not applicable
Incorrect Calculation of Buffer Size in function yank_copy_line
Mar 4th 2023
jieyongma
•
High
High
•
CVE-2023-1175
CVE-2023-1175
Buffer Over Read in function inc
Mar 1st 2023
jieyongma
•
self closed
Divide By Zero in function adjust_skipcol
Jan 26th 2023
jieyongma
•
High
High
•
CVE-2023-0512
CVE-2023-0512
Out-of-bounds Read in function utf_ptr2char
Sep 3rd 2023
jieyongma
•
informative
High
heap-buffer-overflow in function utfc_ptr2len
Sep 3rd 2023
soaarony
•
High
High
•
CVE-2023-4751
CVE-2023-4751
Heap-based Buffer Overflow in function vim_strncpy
Sep 5th 2023
jieyongma
•
not applicable
Heap Use After Free in function ins_compl_get_exp
Sep 3rd 2023
jieyongma
•
High
High
•
CVE-2023-4752
CVE-2023-4752
heap-buffer-overflow in same_leader and utfc_ptr2len
Jan 21st 2023
soaarony
•
High
High
•
CVE-2023-0433
CVE-2023-0433
Heap-based Buffer Overflow in function ml_append_int
Jan 13th 2023
jieyongma
•
High
High
•
CVE-2023-0288
CVE-2023-0288
Heap-based Buffer Overflow in function msg_puts_printf
Jan 4th 2023
jieyongma
•
High
High
•
CVE-2023-0051
CVE-2023-0051
Out-of-bounds Write in function do_string_sub
Jan 4th 2023
jieyongma
•
High
High
•
CVE-2023-0054
CVE-2023-0054
Out-of-bounds Read in function build_stl_str_hl
Jan 4th 2023
jieyongma
•
High
High
•
CVE-2023-0049
CVE-2023-0049
AddressSanitizer: heap-buffer-overflow in alloc.c 246:11
Nov 25th 2022
fondxd
•
High
High
•
CVE-2022-4141
CVE-2022-4141
heap-use-after-free in function did_set_spelllang at spell
Dec 2nd 2022
ex7l0it
•
High
High
•
CVE-2022-4292
CVE-2022-4292
Use After Free in function qf_get_curlist
Dec 2nd 2022
janette88
•
High
High
Floating point exception in function num_divide at eval
Dec 2nd 2022
ex7l0it
•
Medium
Medium
•
CVE-2022-4293
CVE-2022-4293
Use After Free in function bt_quickfix
Dec 2nd 2022
janette88
•
High
High
•
CVE-2022-3591
CVE-2022-3591
heap-buffer-overflow in function inc at misc2.c
Dec 2nd 2022
ex7l0it
•
High
High
•
CVE-2022-3520
CVE-2022-3520
heap-buffer-overflow in function same_leader at textformat.c:558:7
Nov 13th 2022
mist1987
•
not applicable
heap-buffer-overflow in function skipwhite
Dec 2nd 2022
mist1987
•
Medium
Medium
•
CVE-2022-3491
CVE-2022-3491
Use After Free in function did_set_string_option
Sep 28th 2022
janette88
•
High
High
•
CVE-2022-3352
CVE-2022-3352
Stack-based Buffer Overflow in function win_redr_ruler
Sep 26th 2022
janette88
•
High
High
•
CVE-2022-3324
CVE-2022-3324
Heap-buffer-overflow in same_leader
Oct 6th 2022
janette88
•
not applicable
eval.c:2554:6: runtime error: applying non-zero offset 1 to null pointer
Oct 5th 2022
ckng97
•
not applicable
Stack-based Buffer Overflow in function ex_finally
Sep 24th 2022
xiowane
•
High
High
•
CVE-2022-3296
CVE-2022-3296
Use After Free in function process_next_cpt_value
Sep 24th 2022
janette88
•
High
High
•
CVE-2022-3297
CVE-2022-3297
Use After Free in function movemark
Sep 21st 2022
janette88
•
High
High
•
CVE-2022-3256
CVE-2022-3256
Use After Free in function getcmdline_int
Sep 17th 2022
janette88
•
High
High
•
CVE-2022-3235
CVE-2022-3235
Heap-based Buffer Overflow in function utfc_ptr2len
Sep 16th 2022
janette88
•
High
High
•
CVE-2022-3234
CVE-2022-3234
Null Dereference in vim_regcomp()
Sep 7th 2022
eli2k765
•
Medium
Medium
•
CVE-2022-3153
CVE-2022-3153
Use After Free in function do_tag
Sep 5th 2022
janette88
•
High
High
•
CVE-2022-3134
CVE-2022-3134
Use After Free in function do_cmdline
Sep 2nd 2022
janette88
•
High
High
•
CVE-2022-3099
CVE-2022-3099
Access violation near NULL on destination operand eval.c:2603:37 in segmentation...
Sep 22nd 2022
fondxd
•
Medium
Medium
•
CVE-2022-3278
CVE-2022-3278
Use After Free in Function qf_buf_add_line( )
Aug 29th 2022
brenu
•
High
High
•
CVE-2022-3037
CVE-2022-3037
Use After Free in function get_next_valid_entry
Aug 27th 2022
janette88
•
High
High
•
CVE-2022-3016
CVE-2022-3016
Use After Free in function qf_fill_buffer
Aug 24th 2022
janette88
•
High
High
•
CVE-2022-2982
CVE-2022-2982
NULL Pointer Dereference in function do_mouse
Aug 24th 2022
janette88
•
Medium
Medium
•
CVE-2022-2980
CVE-2022-2980
Heap-based Buffer Overflow in function vim_strncpy
Sep 10th 2022
janette88
•
not applicable
Use After Free in function vim_vsnprintf_typval
Aug 22nd 2022
janette88
•
High
High
•
CVE-2022-2946
CVE-2022-2946
NULL Pointer Dereference in function sug_filltree
Aug 21st 2022
janette88
•
Medium
Medium
•
CVE-2022-2923
CVE-2022-2923
Use After Free in function find_var_also_in_script
Aug 18th 2022
janette88
•
High
High
•
CVE-2022-2889
CVE-2022-2889
NULL Pointer Dereference in function generate_loadvar
Aug 17th 2022
janette88
•
Medium
Medium
•
CVE-2022-2874
CVE-2022-2874
Heap-based Buffer Overflow in function latin_ptr2len
Aug 16th 2022
janette88
•
High
High
•
CVE-2022-2849
CVE-2022-2849
Buffer Over-read in function utf_head_off
Aug 16th 2022
janette88
•
High
High
•
CVE-2022-2845
CVE-2022-2845
use after free in function generate_PCALL
Aug 16th 2022
janette88
•
High
High
•
CVE-2022-2862
CVE-2022-2862
Heap-based Buffer Overflow in function compile_lock_unlock in vim/vim
Aug 14th 2022
janette88
•
High
High
•
CVE-2022-2819
CVE-2022-2819
Use After Free in function string_quote
Aug 14th 2022
janette88
•
High
High
•
CVE-2022-2817
CVE-2022-2817
Out-of-bounds read in function check_vim9_unlet in vim/vim
Aug 14th 2022
janette88
•
High
High
•
CVE-2022-2816
CVE-2022-2816
Heap-based Buffer Overflow occurs in function ins_compl_infercase_gettext in vim...
Aug 1st 2022
janette88
•
not applicable
heap-buffer-overflow occurs in function eval_string ./vim/src/typval.c:2226
Jul 29th 2022
enderdzz
•
High
High
•
CVE-2022-2580
CVE-2022-2580
SIGSEGV in file_ff_differs()
Jul 26th 2022
abysslab
•
self closed
Heap-based Buffer Overflow in function ins_compl_infercase_gettext()
Jul 23rd 2022
xiaoge1001
•
High
High
•
CVE-2022-2522
CVE-2022-2522
Undefined behavior in diff_write_buffer()
Jul 30th 2022
abysslab
•
Medium
Medium
•
CVE-2022-2598
CVE-2022-2598
Heap-based buffer overflow in function vim_iswordp_buf
Jul 28th 2022
acquykhud
•
High
High
•
CVE-2022-2571
CVE-2022-2571
Heap-based buffer overflow in function ins_compl_add
Jul 7th 2022
acquykhud
•
High
High
•
CVE-2022-2344
CVE-2022-2344
Out-of-bound read in function utf_ptr2char
Jul 29th 2022
acquykhud
•
not applicable
Heap-based Buffer Overflow in function ins_compl_add
Jul 7th 2022
jieyongma
•
High
High
•
CVE-2022-2343
CVE-2022-2343
Out-of-bounds Read in function utf_ptr2char
Jul 29th 2022
jieyongma
•
High
High
•
CVE-2022-2581
CVE-2022-2581
Heap Use After Free in function skipwhite
Jul 7th 2022
jieyongma
•
High
High
•
CVE-2022-2345
CVE-2022-2345
Heap Use After Free in function ex_diffgetput
Jul 2nd 2022
jieyongma
•
High
High
•
CVE-2022-2289
CVE-2022-2289
Stack-based Buffer Overflow in function spell_dump_compl
Jul 4th 2022
jieyongma
•
High
High
•
CVE-2022-2304
CVE-2022-2304
Integer Overflow in function del_typebuf
Jul 1st 2022
jieyongma
•
High
High
•
CVE-2022-2285
CVE-2022-2285
Buffer Over-read in function check_suggestions
Jul 28th 2022
jieyongma
•
not applicable
Out-of-bounds Read in function ins_bytes
Jul 1st 2022
jieyongma
•
High
High
•
CVE-2022-2286
CVE-2022-2286
Heap-based Buffer Overflow in function utfc_ptr2len
Jul 1st 2022
jieyongma
•
High
High
•
CVE-2022-2284
CVE-2022-2284
Heap-based buffer overflow in function inc
Jun 30th 2022
acquykhud
•
High
High
•
CVE-2022-2264
CVE-2022-2264
Out-of-bound read in function msg_outtrans_special
Jun 29th 2022
acquykhud
•
High
High
•
CVE-2022-2257
CVE-2022-2257
Out-of-bound write in function parse_command_modifiers
Jul 2nd 2022
acquykhud
•
High
High
•
CVE-2022-2288
CVE-2022-2288
Out-of-bound read data in function suggest_trie_walk() abusing array byts
Jul 1st 2022
h4niz
•
High
High
•
CVE-2022-2287
CVE-2022-2287
Out-of-bound write in spell_dump_compl function
Jul 2nd 2022
h4niz
•
not applicable
Null pointer dereference in function skipwhite
Jun 27th 2022
acquykhud
•
High
High
•
CVE-2022-2231
CVE-2022-2231
Out-of-bound write in function ml_append_int
Jun 26th 2022
acquykhud
•
High
High
•
CVE-2022-2210
CVE-2022-2210
Heap-based buffer overflow in function ins_bs
Jun 26th 2022
acquykhud
•
High
High
•
CVE-2022-2207
CVE-2022-2207
Null pointer dereference in function diff_check
Jun 26th 2022
acquykhud
•
High
High
•
CVE-2022-2208
CVE-2022-2208
Out-of-bound read in function msg_outtrans_attr
Jun 25th 2022
acquykhud
•
High
High
•
CVE-2022-2206
CVE-2022-2206
Heap-based buffer overflow in function get_lisp_indent
Jun 24th 2022
acquykhud
•
self closed
Buffer Over-read in function put_on_cmdline
Jun 22nd 2022
jieyongma
•
High
High
•
CVE-2022-2175
CVE-2022-2175
Out-of-bounds Read in function get_lisp_indent
Jun 22nd 2022
jieyongma
•
High
High
•
CVE-2022-2183
CVE-2022-2183
Heap-based Buffer Overflow in function utf_ptr2char
Jun 22nd 2022
jieyongma
•
High
High
•
CVE-2022-2182
CVE-2022-2182
Heap-based Buffer Overflow in function get_lisp_indent
Jun 18th 2022
jieyongma
•
High
High
•
CVE-2022-2125
CVE-2022-2125
Memory leaks in function vim_strsave
Jun 22nd 2022
jieyongma
•
Medium
Medium
Buffer Over-read in function current_quote
Jun 18th 2022
jieyongma
•
High
High
•
CVE-2022-2124
CVE-2022-2124
Out-of-bounds Read in function suggest_trie_walk
Jun 18th 2022
jieyongma
•
High
High
•
CVE-2022-2126
CVE-2022-2126
Out-of-bounds write in function vim_regsub_both
Jun 18th 2022
jieyongma
•
High
High
•
CVE-2022-2129
CVE-2022-2129
use after free in skipwhite
Jun 9th 2022
thecrott
•
High
•
$95
High
•
$95
•
CVE-2022-2042
CVE-2022-2042
Heap-based Buffer Overflow at ex_substitute function
Jun 6th 2022
h4niz
•
self closed
Infinite recursive function calls result in stack overflow in function eval_list
Jun 16th 2022
jieyongma
•
not applicable
Out-of-bounds write in function append_command
Jun 6th 2022
jieyongma
•
High
High
•
CVE-2022-2000
CVE-2022-2000
Use After Free in function utf_ptr2char
Jun 1st 2022
jieyongma
•
High
High
•
CVE-2022-1968
CVE-2022-1968
Heap-based Buffer Overflow in function vim_regsub_both
May 30th 2022
jieyongma
•
High
High
•
CVE-2022-1942
CVE-2022-1942
Out-of-bounds write in function vim_regsub_both
May 26th 2022
jieyongma
•
High
High
•
CVE-2022-1897
CVE-2022-1897
Use After Free in function find_pattern_in_path
May 26th 2022
jieyongma
•
High
High
•
CVE-2022-1898
CVE-2022-1898
Out-of-bounds read in function gchar_cursor
May 24th 2022
jieyongma
•
High
High
•
CVE-2022-1851
CVE-2022-1851
Heap-based Buffer Overflow in function utf_head_off
May 25th 2022
unknownu0
•
High
High
•
CVE-2022-1886
CVE-2022-1886
Buffer Over-read in function utf_ptr2char
May 28th 2022
jieyongma
•
High
•
$60
High
•
$60
•
CVE-2022-1927
CVE-2022-1927
Out-of-bounds write in function vim_regsub_both
May 18th 2022
jieyongma
•
High
High
•
CVE-2022-1785
CVE-2022-1785
Infinite recursive function calls result in stack overflow
May 17th 2022
greatergoodest
•
Medium
Medium
•
CVE-2022-1771
CVE-2022-1771
Buffer Over-read in function get_one_sourceline
May 17th 2022
jieyongma
•
Medium
Medium
•
CVE-2022-1769
CVE-2022-1769
heap-use-after-free in function find_pattern_in_path
May 18th 2022
jieyongma
•
Medium
Medium
•
CVE-2022-1796
CVE-2022-1796
NULL Pointer Dereference in function vim_regexec_string
May 16th 2022
mjcpwns
•
not applicable
Show more...
CRITICAL
$0
HIGH
$0
MEDIUM
$0
LOW
$0
