ByteOS Network

Vulnerability Details :

CVE-2022-0696

Summary

Assigner-@huntrdev

Assigner Org ID-c09c270a-b464-47c1-9133-acb35b22c19a

Published At-21 Feb, 2022 | 00:00

Updated At-02 Aug, 2024 | 23:40

NULL Pointer Dereference in vim/vim

NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:@huntrdev

Assigner Org ID:c09c270a-b464-47c1-9133-acb35b22c19a

Published At:21 Feb, 2022 | 00:00

Updated At:02 Aug, 2024 | 23:40

▼CVE Numbering Authority (CNA)

NULL Pointer Dereference in vim/vim

NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428.

Affected Products

Vendor

Vim

Product

vim/vim

Versions

Affected

From unspecified before 8.2.4428 (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-476	CWE-476 NULL Pointer Dereference

Type: CWE

CWE ID: CWE-476

Description: CWE-476 NULL Pointer Dereference

Metrics

Version	Base score	Base severity	Vector
3.0	6.2	MEDIUM	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Version: 3.0

Base score: 6.2

Base severity: MEDIUM

Vector:

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Hyperlink	Resource
https://huntr.dev/bounties/7416c2cb-1809-4834-8989-e84ff033f15f	N/A
https://github.com/vim/vim/commit/0f6e28f686dbb59ab3b562408ab9b2234797b9b1	N/A
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7ZLEHVP4LNAGER4ZDGUDS5V5YVQD6INF/	vendor-advisory
https://support.apple.com/kb/HT213488	N/A
http://seclists.org/fulldisclosure/2022/Oct/41	mailing-list
http://seclists.org/fulldisclosure/2022/Oct/28	mailing-list
https://lists.debian.org/debian-lts-announce/2022/11/msg00032.html	mailing-list

Hyperlink: https://huntr.dev/bounties/7416c2cb-1809-4834-8989-e84ff033f15f

Resource: N/A

Hyperlink: https://github.com/vim/vim/commit/0f6e28f686dbb59ab3b562408ab9b2234797b9b1

Resource: N/A

Hyperlink: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7ZLEHVP4LNAGER4ZDGUDS5V5YVQD6INF/

Resource:

vendor-advisory

Hyperlink: https://support.apple.com/kb/HT213488

Resource: N/A

Hyperlink: http://seclists.org/fulldisclosure/2022/Oct/41

Resource:

mailing-list

Hyperlink: http://seclists.org/fulldisclosure/2022/Oct/28

Resource:

mailing-list

Hyperlink: https://lists.debian.org/debian-lts-announce/2022/11/msg00032.html

Resource:

mailing-list

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://huntr.dev/bounties/7416c2cb-1809-4834-8989-e84ff033f15f	x_transferred
https://github.com/vim/vim/commit/0f6e28f686dbb59ab3b562408ab9b2234797b9b1	x_transferred
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7ZLEHVP4LNAGER4ZDGUDS5V5YVQD6INF/	vendor-advisory x_transferred
https://support.apple.com/kb/HT213488	x_transferred
http://seclists.org/fulldisclosure/2022/Oct/41	mailing-list x_transferred
http://seclists.org/fulldisclosure/2022/Oct/28	mailing-list x_transferred
https://lists.debian.org/debian-lts-announce/2022/11/msg00032.html	mailing-list x_transferred

Hyperlink: https://huntr.dev/bounties/7416c2cb-1809-4834-8989-e84ff033f15f

Resource:

x_transferred

Hyperlink: https://github.com/vim/vim/commit/0f6e28f686dbb59ab3b562408ab9b2234797b9b1

Resource:

x_transferred

Hyperlink: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7ZLEHVP4LNAGER4ZDGUDS5V5YVQD6INF/

Resource:

vendor-advisory

x_transferred

Hyperlink: https://support.apple.com/kb/HT213488

Resource:

x_transferred

Hyperlink: http://seclists.org/fulldisclosure/2022/Oct/41

Resource:

mailing-list

x_transferred

Hyperlink: http://seclists.org/fulldisclosure/2022/Oct/28

Resource:

mailing-list

x_transferred

Hyperlink: https://lists.debian.org/debian-lts-announce/2022/11/msg00032.html

Resource:

mailing-list

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:security@huntr.dev

Published At:21 Feb, 2022 | 20:15

Updated At:07 Nov, 2023 | 03:41

NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Secondary	3.0	6.2	MEDIUM	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P

Type: Primary

Version: 3.1

Base score: 5.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Type: Secondary

Version: 3.0

Base score: 6.2

Base severity: MEDIUM

Vector:

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 2.0

Base score: 4.3

Base severity: MEDIUM

Vector:

AV:N/AC:M/Au:N/C:N/I:N/A:P

CPE Matches

Vim

>>vim>>Versions before 8.2.4428(exclusive)

cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*

Fedora Project

>>fedora>>34

cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

Apple Inc.

>>macos>>Versions before 13.0(exclusive)

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Debian GNU/Linux

>>debian_linux>>10.0

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-476	Primary	nvd@nist.gov
CWE-476	Secondary	security@huntr.dev

CWE ID: CWE-476

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-476

Type: Secondary