CVE-2023-4738

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 2, 2023
Updated: Feb 1, 2024
CWE ID 787
CWE ID 122

Summary

CVE-2023-4738 refers to a heap-based buffer overflow vulnerability discovered in the GitHub repository vim/vim, affecting versions prior to 9.0.1848. An attacker can exploit this issue by sending specially crafted input to a vulnerable application, leading to an unintended heap memory write. Successful exploitation could result in arbitrary code execution or a denial-of-service condition. Users are strongly encouraged to update their vim installation to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share