CVE-2023-48234

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 16, 2023

Updated: Jan 25, 2024

CWE ID 190

Summary

CVE-2023-48234 is a vulnerability affecting the open source command line text editor, Vim. This issue arises when processing large counts for a normal mode z command, leading to an overflow condition. The impact is deemed low, requiring user interaction and not resulting in a consistent crash. The issue has been rectified in commit `58f9befca1`, which is part of Vim release version 9.0.2109. Users are strongly advised to upgrade to mitigate this vulnerability, as there are no known workarounds.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tY1OrA
https://www.cve.org/CVERecord?id=CVE-2023-48234
https://nvd.nist.gov/vuln/detail/CVE-2023-48234

Back to Vulnerability Database

CVE-2023-48234

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations