ByteOS Network

CVE Vulnerability Details :

CVE-2022-0361

PUBLISHED

More Info Official Page

Assigner-@huntrdev

Assigner Org ID-c09c270a-b464-47c1-9133-acb35b22c19a

Published At-26 Jan, 2022 | 00:00

Updated At-03 Nov, 2025 | 20:34

▼CVE Numbering Authority (CNA)

Heap-based Buffer Overflow in vim/vim

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.

Affected Products

Vendor

Vim

Product

vim/vim

Versions

Affected

From unspecified before 8.2 (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-122	CWE-122 Heap-based Buffer Overflow

Type: CWE

CWE ID: CWE-122

Description: CWE-122 Heap-based Buffer Overflow

Metrics

Version	Base score	Base severity	Vector
3.0	8.4	HIGH	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Version: 3.0

Base score: 8.4

Base severity: HIGH

Vector:

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

Hyperlink	Resource
https://huntr.dev/bounties/a055618c-0311-409c-a78a-99477121965b	N/A
https://github.com/vim/vim/commit/dc5490e2cbc8c16022a23b449b48c1bd0083f366	N/A
https://lists.debian.org/debian-lts-announce/2022/03/msg00018.html	mailing-list
https://security.gentoo.org/glsa/202208-32	vendor-advisory
https://support.apple.com/kb/HT213444	N/A
https://support.apple.com/kb/HT213488	N/A
http://seclists.org/fulldisclosure/2022/Oct/41	mailing-list
http://seclists.org/fulldisclosure/2022/Oct/28	mailing-list
http://seclists.org/fulldisclosure/2022/Oct/43	mailing-list
https://lists.debian.org/debian-lts-announce/2022/11/msg00009.html	mailing-list

Hyperlink: https://huntr.dev/bounties/a055618c-0311-409c-a78a-99477121965b

Resource: N/A

Hyperlink: https://github.com/vim/vim/commit/dc5490e2cbc8c16022a23b449b48c1bd0083f366

Resource: N/A

Hyperlink: https://lists.debian.org/debian-lts-announce/2022/03/msg00018.html

Resource:

mailing-list

Hyperlink: https://security.gentoo.org/glsa/202208-32

Resource:

vendor-advisory

Hyperlink: https://support.apple.com/kb/HT213444

Resource: N/A

Hyperlink: https://support.apple.com/kb/HT213488

Resource: N/A

Hyperlink: http://seclists.org/fulldisclosure/2022/Oct/41

Resource:

mailing-list

Hyperlink: http://seclists.org/fulldisclosure/2022/Oct/28

Resource:

mailing-list

Hyperlink: http://seclists.org/fulldisclosure/2022/Oct/43

Resource:

mailing-list

Hyperlink: https://lists.debian.org/debian-lts-announce/2022/11/msg00009.html

Resource:

mailing-list

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://huntr.dev/bounties/a055618c-0311-409c-a78a-99477121965b	x_transferred
https://github.com/vim/vim/commit/dc5490e2cbc8c16022a23b449b48c1bd0083f366	x_transferred
https://lists.debian.org/debian-lts-announce/2022/03/msg00018.html	mailing-list x_transferred
https://security.gentoo.org/glsa/202208-32	vendor-advisory x_transferred
https://support.apple.com/kb/HT213444	x_transferred
https://support.apple.com/kb/HT213488	x_transferred
http://seclists.org/fulldisclosure/2022/Oct/41	mailing-list x_transferred
http://seclists.org/fulldisclosure/2022/Oct/28	mailing-list x_transferred
http://seclists.org/fulldisclosure/2022/Oct/43	mailing-list x_transferred
https://lists.debian.org/debian-lts-announce/2022/11/msg00009.html	mailing-list x_transferred
https://lists.debian.org/debian-lts-announce/2025/03/msg00023.html	N/A