CVE-2023-3896

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 7, 2023
Updated: Aug 31, 2023
CWE ID 369

Summary

CVE-2023-3896 is a vulnerability affecting the vim text editor version 9.0.1367-1 to 9.0.1367-3. This issue involves a divide-by-zero error that can be exploited by attackers to cause the editor to crash or potentially execute arbitrary code. Successful exploitation could lead to a loss of data or unauthorized access to the system. Users are advised to update their vim installation to the latest version, 9.0.1368 or later, to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share