[Forgot Password]
Login  Register Subscribe

24547

 
 

132763

 
 

123799

 
 

909

 
 

102620

 
 

150

Paid content will be excluded from the download.


Download | Alert*
OVAL

CVE-2019-12735 -- neovim, vim

ID: oval:org.secpod.oval:def:55330Date: (C)2019-06-11   (M)2019-06-11
Class: VULNERABILITYFamily: unix




getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim.

Platform:
Debian 8.x
Debian 9.x
Product:
vim
neovim
Reference:
CVE-2019-12735
CVE    1
CVE-2019-12735
CPE    6
cpe:/o:debian:debian_linux:8.x
cpe:/a:vim:vim:6.1
cpe:/a:vim:vim:6.3
cpe:/a:vim:vim:5.6
...

© SecPod Technologies