Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-030318ca00 advisory.

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1367. (CVE-2023-1127)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1392. (CVE-2023-1264)

  - Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378. (CVE-2023-1175)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376. (CVE-2023-1170)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1402. (CVE-2023-1355)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.3. It is, therefore, affected by multiple vulnerabilities:

  - A vulnerability exists in curl <7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP.
    Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP     step even when HTTP is provided in the URL. However, the HSTS mechanism could be bypassed if the host name     in the given URL first uses IDN characters that get replaced to ASCII counterparts as part of the IDN     conversion. Like using the character UTF-8 U+3002 (IDEOGRAPHIC FULL STOP) instead of the common ASCII full     stop (U+002E) `.`. Then in a subsequent request, it does not detect the HSTS state and makes a clear text     transfer. Because it would store the info IDN encoded but look for it IDN decoded. (CVE-2022-43551)

  - A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all     protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations.
    When getting denied to tunnel the specific protocols SMB or TELNET, curl would use a heap-allocated struct     after it had been freed, in its transfer shutdown code path. (CVE-2022-43552)

  - A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura     13.2.1, iOS 16.3.1 and iPadOS 16.3.1. An app may be able to execute arbitrary code with kernel     privileges.. (CVE-2023-23514)

  - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143. (CVE-2023-0049)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144. (CVE-2023-0051)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145. (CVE-2023-0054)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. (CVE-2023-0288)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. (CVE-2023-0433)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

  - A buffer overflow issue was addressed with improved memory handling. (CVE-2023-27957, CVE-2023-27968)

  - This issue was addressed with improved checks. (CVE-2023-23525, CVE-2023-23532, CVE-2023-27943)

  - The issue was addressed with improved checks. (CVE-2023-23527, CVE-2023-23534, CVE-2023-27942,     CVE-2023-27951, CVE-2023-27955)

  - This issue was addressed by removing the vulnerable code. (CVE-2023-27931)

  - Multiple validation issues were addressed with improved input sanitization. (CVE-2023-27961)

  - The issue was addressed with additional restrictions on the observability of app states. (CVE-2023-23543)

  - An out-of-bounds write issue was addressed with improved input validation. (CVE-2023-27936)

  - The issue was addressed with improved memory handling. (CVE-2023-23535, CVE-2023-27933, CVE-2023-27953,     CVE-2023-27956, CVE-2023-27958, CVE-2023-28181)

  - A memory initialization issue was addressed. (CVE-2023-27934)

  - A denial-of-service issue was addressed with improved memory handling. (CVE-2023-28180)

  - The issue was addressed with improved bounds checks. (CVE-2023-27935)

  - A memory corruption issue was addressed with improved state management. (CVE-2023-27965)

  - A privacy issue was addressed by moving sensitive data to a more secure location. (CVE-2023-28190)

  - A privacy issue was addressed with improved private data redaction for log entries. (CVE-2023-23537,     CVE-2023-23542, CVE-2023-27928)

  - An integer overflow was addressed with improved input validation. (CVE-2023-27937)

  - This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me     folder. (CVE-2023-23526)

  - An out-of-bounds read was addressed with improved input validation. (CVE-2023-27929, CVE-2023-27949)

  - An out-of-bounds read was addressed with improved bounds checking. (CVE-2023-27946)

  - A use after free issue was addressed with improved memory management. (CVE-2023-27969)

  - An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with     improved input validation. (CVE-2023-27941)

  - A validation issue was addressed with improved input sanitization. (CVE-2023-28200)

  - The issue was addressed with improved authentication. (CVE-2023-28182)

  - A logic issue was addressed with improved checks. (CVE-2023-23533, CVE-2023-23538, CVE-2023-27962)

  - A logic issue was addressed with improved restrictions. (CVE-2023-23523)

  - A race condition was addressed with improved locking. (CVE-2023-27952)

  - A logic issue was addressed with improved validation. (CVE-2023-28178)

  - The issue was addressed with additional permissions checks. (CVE-2023-27963)

  - This issue was addressed with improved state management. (CVE-2023-27932)

  - The issue was addressed by removing origin information. (CVE-2023-27954)

  - This issue was addressed with a new entitlement. (CVE-2023-27944)

Note that Nessus has not tested for these issues but has instead relied only on the operating system's self-reported version number.

The remote host is running a version of macOS / Mac OS X that is 11.x prior to 11.7.5. It is, therefore, affected by multiple vulnerabilities:

  - A use after free issue was addressed with improved memory management. This issue is fixed in watchOS 8.6,     tvOS 15.5, iOS 15.5 and iPadOS 15.5. An application may be able to execute arbitrary code with kernel     privileges. (CVE-2022-26702)

  - A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura     13.2.1, iOS 16.3.1 and iPadOS 16.3.1. An app may be able to execute arbitrary code with kernel     privileges.. (CVE-2023-23514)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. (CVE-2023-0433)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

  - The issue was addressed with improved memory handling. (CVE-2023-23535, CVE-2023-23540, CVE-2023-27953,     CVE-2023-27958)

  - The issue was addressed with improved checks. (CVE-2023-23527, CVE-2023-23534, CVE-2023-27951,     CVE-2023-27955)

  - Multiple validation issues were addressed with improved input sanitization. (CVE-2023-27961)

  - An out-of-bounds write issue was addressed with improved input validation. (CVE-2023-27936)

  - The issue was addressed with improved bounds checks. (CVE-2023-27935)

  - A privacy issue was addressed with improved private data redaction for log entries. (CVE-2023-23537,     CVE-2023-23542, CVE-2023-27928)

  - An integer overflow was addressed with improved input validation. (CVE-2023-27937)

  - An out-of-bounds read was addressed with improved bounds checking. (CVE-2023-27946)

  - A validation issue was addressed with improved input sanitization. (CVE-2023-28200)

  - The issue was addressed with improved authentication. (CVE-2023-28182)

  - A logic issue was addressed with improved checks. (CVE-2023-27962)

  - This issue was addressed with a new entitlement. (CVE-2023-27944)

Note that Nessus has not tested for these issues but has instead relied only on the operating system's self-reported version number.

The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.6.4. It is, therefore, affected by multiple vulnerabilities:

  - A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura     13.2.1, iOS 16.3.1 and iPadOS 16.3.1. An app may be able to execute arbitrary code with kernel     privileges.. (CVE-2023-23514)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. (CVE-2023-0433)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

  - The issue was addressed with improved memory handling. (CVE-2023-23540, CVE-2023-27933, CVE-2023-27953,     CVE-2023-27958)

  - The issue was addressed with improved checks. (CVE-2023-23527, CVE-2023-27942, CVE-2023-27951,     CVE-2023-27955)

  - Multiple validation issues were addressed with improved input sanitization. (CVE-2023-27961)

  - An out-of-bounds write issue was addressed with improved input validation. (CVE-2023-27936)

  - The issue was addressed with improved bounds checks. (CVE-2023-27935)

  - An integer overflow was addressed with improved input validation. (CVE-2023-27937)

  - An out-of-bounds read was addressed with improved bounds checking. (CVE-2023-27946)

  - A validation issue was addressed with improved input sanitization. (CVE-2023-28200)

  - An out-of-bounds read was addressed with improved input validation. (CVE-2023-27949)

  - The issue was addressed with improved authentication. (CVE-2023-28182)

  - A logic issue was addressed with improved checks. (CVE-2023-23533, CVE-2023-23538, CVE-2023-27962)

  - A logic issue was addressed with improved validation. (CVE-2023-28178)

  - The issue was addressed with additional permissions checks. (CVE-2023-27963)

  - A privacy issue was addressed with improved private data redaction for log entries. (CVE-2023-23542)

  - This issue was addressed with a new entitlement. (CVE-2023-27944)

Note that Nessus has not tested for these issues but has instead relied only on the operating system's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1703 advisory.

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. (CVE-2023-0288)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. (CVE-2023-0433)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1367. (CVE-2023-1127)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-117 advisory.

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483. (CVE-2022-3234)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0490. (CVE-2022-3235)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0530. (CVE-2022-3256)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0552. (CVE-2022-3278)

  - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577. (CVE-2022-3296)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0579. (CVE-2022-3297)

  - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598. (CVE-2022-3324)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0614. (CVE-2022-3352)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0742. (CVE-2022-3491)

  - A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim     8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts.
    (CVE-2022-47024)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144. (CVE-2023-0051)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145. (CVE-2023-0054)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. (CVE-2023-0288)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. (CVE-2023-0433)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of vim installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-0512 advisory.

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES12 / SLES_SAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0760-1 advisory.

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1367. (CVE-2023-1127)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376. (CVE-2023-1170)

  - Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378. (CVE-2023-1175)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0781-1 advisory.

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1367. (CVE-2023-1127)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376. (CVE-2023-1170)

  - Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378. (CVE-2023-1175)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1975 advisory.

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0061. (CVE-2022-2522)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101. (CVE-2022-2571)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0102. (CVE-2022-2580)

  - Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0104. (CVE-2022-2581)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0224. (CVE-2022-2874)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0389. (CVE-2022-3134)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404. (CVE-2022-3153)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483. (CVE-2022-3234)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0490. (CVE-2022-3235)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0530. (CVE-2022-3256)

  - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0552. (CVE-2022-3278)

  - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577. (CVE-2022-3296)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0579. (CVE-2022-3297)

  - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598. (CVE-2022-3324)

  - Use After Free in GitHub repository vim/vim prior to 9.0.0614. (CVE-2022-3352)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0742. (CVE-2022-3491)

  - A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim     8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts.
    (CVE-2022-47024)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144. (CVE-2023-0051)

  - Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145. (CVE-2023-0054)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189. (CVE-2023-0288)

  - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. (CVE-2023-0433)

  - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. (CVE-2023-0512)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
173752	Fedora 36 : vim (2023-030318ca00)	Nessus	Fedora Local Security Checks	high
173444	macOS 13.x < 13.3 Multiple Vulnerabilities (HT213670)	Nessus	MacOS X Local Security Checks	critical
173442	macOS 11.x < 11.7.5 Multiple Vulnerabilities (HT213675)	Nessus	MacOS X Local Security Checks	critical
173439	macOS 12.x < 12.6.4 Multiple Vulnerabilities (HT213677)	Nessus	MacOS X Local Security Checks	critical
173284	Amazon Linux AMI : vim (ALAS-2023-1703)	Nessus	Amazon Linux Local Security Checks	high
173104	Amazon Linux 2023 : vim-common, vim-data, vim-default-editor (ALAS2023-2023-117)	Nessus	Amazon Linux Local Security Checks	high
172875	CBL Mariner 2.0 Security Update: vim (CVE-2023-0512)	Nessus	MarinerOS Local Security Checks	high
172646	SUSE SLES12 Security Update : vim (SUSE-SU-2023:0760-1)	Nessus	SuSE Local Security Checks	high
172644	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : vim (SUSE-SU-2023:0781-1)	Nessus	SuSE Local Security Checks	high
172151	Amazon Linux 2 : vim (ALAS-2023-1975)	Nessus	Amazon Linux Local Security Checks	high

Detections

Analytics

CVE-2023-0512

high

Tenable Plugins

high

critical

critical

critical

high

high

high

high

high

high