[Forgot Password]
Login  Register Subscribe

24547

 
 

132804

 
 

129935

 
 

909

 
 

106980

 
 

152

Paid content will be excluded from the download.


Download | Alert*
OVAL

CVE-2019-12735 -- neovim, vim

ID: oval:org.secpod.oval:def:55330Date: (C)2019-06-11   (M)2019-07-22
Class: VULNERABILITYFamily: unix




getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim.

Platform:
Debian 8.x
Debian 9.x
Product:
vim
neovim
Reference:
CVE-2019-12735
CVE    1
CVE-2019-12735
CPE    7
cpe:/o:debian:debian_linux:9.x
cpe:/a:neovim:neovim
cpe:/a:vim:vim:6.1
cpe:/a:vim:vim:6.3
...

© SecPod Technologies