Vulnerabilities > VIM > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-19 | CVE-2021-3973 | Heap-based Buffer Overflow vulnerability in multiple products vim is vulnerable to Heap-based Buffer Overflow | 7.8 |
| 2021-11-19 | CVE-2021-3974 | Use After Free vulnerability in multiple products vim is vulnerable to Use After Free | 7.8 |
| 2021-11-05 | CVE-2021-3927 | Heap-based Buffer Overflow vulnerability in multiple products vim is vulnerable to Heap-based Buffer Overflow | 7.8 |
| 2021-11-05 | CVE-2021-3928 | Use of Uninitialized Variable vulnerability in multiple products vim is vulnerable to Use of Uninitialized Variable | 7.8 |
| 2021-10-27 | CVE-2021-3903 | Heap-based Buffer Overflow vulnerability in multiple products vim is vulnerable to Heap-based Buffer Overflow | 7.8 |
| 2021-10-19 | CVE-2021-3872 | Heap-based Buffer Overflow vulnerability in multiple products vim is vulnerable to Heap-based Buffer Overflow | 7.8 |
| 2021-09-15 | CVE-2021-3796 | Use After Free vulnerability in multiple products vim is vulnerable to Use After Free | 7.3 |
| 2021-09-15 | CVE-2021-3778 | Heap-based Buffer Overflow vulnerability in multiple products vim is vulnerable to Heap-based Buffer Overflow | 7.8 |
| 2021-09-06 | CVE-2021-3770 | Heap-based Buffer Overflow vulnerability in multiple products vim is vulnerable to Heap-based Buffer Overflow | 7.8 |
| 2019-06-05 | CVE-2019-12735 | OS Command Injection vulnerability in multiple products getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim. | 8.6 |