CVE-2023-48236

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 16, 2023
Updated: Jan 25, 2024
CWE ID 190

Summary

CVE-2023-48236 is a vulnerability in the Vim text editor. This vulnerability allows users to overflow the count with values larger than MAX_INT when using the z= command. The impact of this vulnerability is low, and user interaction is required for exploitation. It may not even result in a crash in all situations. The vulnerability has been addressed in commit 73b2d379 and included in release version 9.0.2111, so users are advised to upgrade to this version. There are no known workarounds for this vulnerability. The vulnerability affects multiple products identified by their unique product IDs, and it poses a potential danger to organizations as it could be exploited remotely over a network with required user interaction. The severity of this vulnerability is rated as MEDIUM with a base score of 4.3 according to the CVSS v3.1 scoring system provided by nvd@nist.gov.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-48236 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options