CVE-2023-5344

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 2, 2023

Updated: Dec 13, 2023

CWE ID 122

CWE ID 787

Summary

CVE-2023-5344 is a critical vulnerability affecting the vim repository on GitHub, specifically before version 9.0.1969. This issue involves a heap-based buffer overflow, allowing an attacker to inject malicious data into the application's memory, potentially leading to arbitrary code execution and unauthorized system access. Successful exploitation could result in significant data loss or unintended modifications. Users are urged to update their vim installations to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s3L9rz
https://www.cve.org/CVERecord?id=CVE-2023-5344
https://nvd.nist.gov/vuln/detail/CVE-2023-5344

Back to Vulnerability Database

CVE-2023-5344

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations