CVE-2023-48231

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 16, 2023

Updated: Dec 28, 2023

CWE ID 416

Summary

CVE-2023-48231 is a vulnerability affecting Vim, an open-source command line text editor. During the window closing process, Vim may attempt to access previously freed window structures, leading to application crashes. However, no evidence has been found that this issue can be exploited beyond crashing the application. The vulnerability has been addressed in commit `25aabc2b`, which is included in Vim release version 9.0.2106. Users are strongly urged to upgrade to the latest version to mitigate this risk. No known workarounds exist for this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tY1NuJ
https://www.cve.org/CVERecord?id=CVE-2023-48231
https://nvd.nist.gov/vuln/detail/CVE-2023-48231

Back to Vulnerability Database

CVE-2023-48231

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations