Base Score

MEDIUM5.5

CVE-2022-1771

Uncontrolled Recursion in GitHub repository vim/vim prior to 8.2.4975.

VectorLOCAL

Published Bysecurity@huntr.dev

Published DateMay 18, 2022, 20:15

Weakness Type (CWE):CWE-674

CVSS Metrics

Base Score

5.5

Vector String

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Base Severity

MEDIUM

Version

3.1

Attack Vector (AV)

LOCAL

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

REQUIRED

Scope (S)

UNCHANGED

Confidentiality (C)

NONE

Integrity (I)

NONE

Availability (A)

HIGH

References

https://github.com/vim/vim/commit/51f0bfb88a3554ca2dde777d78a59880d1ee37a8
https://huntr.dev/bounties/faa74175-5317-4b71-a363-dfc39094ecbb
https://security.gentoo.org/glsa/202208-32
https://security.gentoo.org/glsa/202305-16

Base Score

MEDIUM5.5

Weakness Type (CWE):CWE-674

CVSS Metrics

Base Score

5.5

Vector String

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Base Severity

MEDIUM

Version

3.1

Attack Vector (AV)

LOCAL

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

REQUIRED

Scope (S)

UNCHANGED

Confidentiality (C)

NONE

Integrity (I)

NONE

Availability (A)

HIGH