This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:vim:vim
Detail
VendorVimFirst view 2008-06-16
ProductVimLast view2019-06-05
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:vim:vim:7.014
cpe:/a:vim:vim:7.1.26613
cpe:/a:vim:vim:6.312
cpe:/a:vim:vim:7.112
cpe:/a:vim:vim:7.212
Hide | Show 45 More...
CPE NameAffected CVE
cpe:/a:vim:vim:7.1.31412
cpe:/a:vim:vim:6.411
cpe:/a:vim:vim:6.111
cpe:/a:vim:vim:5.611
cpe:/a:vim:vim:6.210
cpe:/a:vim:vim:7.0.00110
cpe:/a:vim:vim:7.0.00210
cpe:/a:vim:vim:7.0.00310
cpe:/a:vim:vim:7.0.00410
cpe:/a:vim:vim:7.0.00510
cpe:/a:vim:vim:7.0.00610
cpe:/a:vim:vim:7.0.00710
cpe:/a:vim:vim:7.0.00810
cpe:/a:vim:vim:7.0.00910
cpe:/a:vim:vim:7.0.01010
cpe:/a:vim:vim:7.0.01110
cpe:/a:vim:vim:7.0.01210
cpe:/a:vim:vim:7.0.01310
cpe:/a:vim:vim:7.0.01410
cpe:/a:vim:vim:7.0.01510
cpe:/a:vim:vim:7.0.01610
cpe:/a:vim:vim:7.0.01710
cpe:/a:vim:vim:7.0.01810
cpe:/a:vim:vim:7.0.01910
cpe:/a:vim:vim:7.0.02010
cpe:/a:vim:vim:7.0.02110
cpe:/a:vim:vim:7.0.02210
cpe:/a:vim:vim:7.0.02310
cpe:/a:vim:vim:7.0.02410
cpe:/a:vim:vim:7.0.02510
cpe:/a:vim:vim:7.0.02610
cpe:/a:vim:vim:7.0.02710
cpe:/a:vim:vim:7.0.02810
cpe:/a:vim:vim:7.0.02910
cpe:/a:vim:vim:7.0.03010
cpe:/a:vim:vim:7.0.03110
cpe:/a:vim:vim:7.0.03210
cpe:/a:vim:vim:7.0.03310
cpe:/a:vim:vim:7.0.03410
cpe:/a:vim:vim:7.0.03510
cpe:/a:vim:vim:7.0.03610
cpe:/a:vim:vim:7.0.03710
cpe:/a:vim:vim:7.0.03810
cpe:/a:vim:vim:7.0.03910
cpe:/a:vim:vim:7.0.04010

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
9.32019-06-05CVE-2019-12735NetworkMediumNone Requ...
2.12017-12-01CVE-2017-17087LocalLowNone Requ...
2.12017-10-31CVE-2017-1000382LocalLowNone Requ...
6.82017-07-08CVE-2017-11109NetworkMediumNone Requ...
7.52017-02-27CVE-2017-6350NetworkLowNone Requ...
Hide | Show 13 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.52017-02-27CVE-2017-6349NetworkLowNone Requ...
7.52017-02-10CVE-2017-5953NetworkLowNone Requ...
6.82016-11-23CVE-2016-1248NetworkMediumNone Requ...
9.32009-02-21CVE-2008-6235NetworkMediumNone Requ...
9.32009-02-21CVE-2008-3076NetworkMediumNone Requ...
9.32009-02-21CVE-2008-3075NetworkMediumNone Requ...
9.32009-02-21CVE-2008-3074NetworkMediumNone Requ...
6.92009-01-28CVE-2009-0316LocalMediumNone Requ...
4.32008-10-22CVE-2008-4677NetworkMediumNone Requ...
6.82008-10-10CVE-2008-3432NetworkMediumNone Requ...
9.32008-09-18CVE-2008-4101NetworkMediumNone Requ...
3.72008-07-24CVE-2008-3294LocalHighNone Requ...
9.32008-06-16CVE-2008-2712NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
23% (4)CWE-78Improper Sanitization of Special Elements used in an OS Command ('O...
17% (3)CWE-190Integer Overflow or Wraparound
17% (3)CWE-20Improper Input Validation
11% (2)CWE-200Information Exposure
11% (2)CWE-94Failure to Control Generation of Code ('Code Injection')
Hide | Show 3 More...
%idName
5% (1)CWE-416Use After Free
5% (1)CWE-255Credentials Management
5% (1)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

Open Source Vulnerability Database (OSVDB)

idDescription
53373Python PySys_SetArgv API Function Search Path Subversion Local Privilege Esca...
52164Vim Netrw Plugin (netrw.vim) Filename Metacharacter Arbitrary Command Execution
52162Vim ZIP Plugin (zipPlugin.vim) shellescape Function Filename Handling Arbitra...
52161Vim Netrw Plugin (netrw.vim) mc / mz Command Filename Handling Arbitrary Code...
52160Vim TAR Plugin (tar.vim) shellescape Function Filename Handling Arbitrary Cod...
Hide | Show 7 More...
idDescription
51437Vim Character Escaping Weakness Arbitrary Command Execution
51436Vim os_unix.c mch_expand_wildcards Function Filename Metacharacter Arbitrary ...
51435Vim execute/system Function Arbitrary Command Execution
48971Vim os_unix.c mch_expand_wildcards Function Filename Metacharacter Handling A...
47458Vim Netrw Plugin FTP Credentials Remote Disclosure
47079Vim src/configure.in Temporary File Symlink Arbitrary File Overwrite
46306Vim Multiple Script execute Command Arbitrary Shell Command Injection

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2010-10-10Name : FreeBSD Ports: vim6, vim6+ruby
File : nvt/freebsd_vim6.nasl
2010-05-12Name : Mac OS X Security Update 2008-007
File : nvt/macosx_secupd_2008-007.nasl
2010-05-12Name : Mac OS X 10.6.3 Update / Mac OS X Security Update 2010-002
File : nvt/macosx_upd_10_6_3_secupd_2010-002.nasl
2009-11-17Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-10-13Name : SLES10: Security update for vim
File : nvt/sles10_gvim.nasl
Hide | Show 20 More...
idDescription
2009-10-10Name : SLES9: Security update for ViM
File : nvt/sles9p5044520.nasl
2009-06-05Name : Ubuntu USN-723-1 (git-core)
File : nvt/ubuntu_723_1.nasl
2009-04-09Name : Mandriva Update for vim MDVSA-2008:236 (vim)
File : nvt/gb_mandriva_MDVSA_2008_236.nasl
2009-04-09Name : Mandriva Update for vim MDVSA-2008:236-1 (vim)
File : nvt/gb_mandriva_MDVSA_2008_236_1.nasl
2009-03-31Name : SuSE Security Summary SUSE-SR:2009:007
File : nvt/suse_sr_2009_007.nasl
2009-03-07Name : Debian Security Advisory DSA 1733-1 (vim)
File : nvt/deb_1733_1.nasl
2009-03-06Name : RedHat Update for vim RHSA-2008:0580-01
File : nvt/gb_RHSA-2008_0580-01_vim.nasl
2009-03-06Name : RedHat Update for vim RHSA-2008:0617-01
File : nvt/gb_RHSA-2008_0617-01_vim.nasl
2009-03-06Name : RedHat Update for vim RHSA-2008:0618-01
File : nvt/gb_RHSA-2008_0618-01_vim.nasl
2009-03-02Name : Mandrake Security Advisory MDVSA-2009:047-1 (vim)
File : nvt/mdksa_2009_047_1.nasl
2009-02-27Name : CentOS Update for vim-common CESA-2008:0617 centos3 i386
File : nvt/gb_CESA-2008_0617_vim-common_centos3_i386.nasl
2009-02-27Name : CentOS Update for vim-common CESA-2008:0617 centos3 x86_64
File : nvt/gb_CESA-2008_0617_vim-common_centos3_x86_64.nasl
2009-02-27Name : CentOS Update for vim-common CESA-2008:0617 centos4 i386
File : nvt/gb_CESA-2008_0617_vim-common_centos4_i386.nasl
2009-02-27Name : CentOS Update for vim-common CESA-2008:0617 centos4 x86_64
File : nvt/gb_CESA-2008_0617_vim-common_centos4_x86_64.nasl
2009-02-27Name : CentOS Update for vim CESA-2008:0618-01 centos2 i386
File : nvt/gb_CESA-2008_0618-01_vim_centos2_i386.nasl
2009-02-23Name : Mandrake Security Advisory MDVSA-2009:047 (vim)
File : nvt/mdksa_2009_047.nasl
2009-02-02Name : Ubuntu USN-710-1 (xine-lib)
File : nvt/ubuntu_710_1.nasl
2009-02-02Name : Ubuntu USN-711-1 (ktorrent)
File : nvt/ubuntu_711_1.nasl
2009-02-02Name : Ubuntu USN-712-1 (vim)
File : nvt/ubuntu_712_1.nasl
2009-01-02Name : FreeBSD Ports: vim, vim-lite, vim-gtk2, vim-gnome
File : nvt/freebsd_vim3.nasl

Snort® IPS/IDS

DateDescription
2017-08-08Vim modelines remote command execution attempt
RuleID : 43482 - Type : FILE-OTHER - Revision : 3
2017-08-08Vim modelines remote command execution attempt
RuleID : 43481 - Type : FILE-OTHER - Revision : 3

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2016-0012.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0006.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0007.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-1_0-0167.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-2_0-0070.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-2_0-0076.nasl - Type : ACT_GATHER_INFO
2018-06-28Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2018-1171.nasl - Type : ACT_GATHER_INFO
2017-11-01Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL22183127.nasl - Type : ACT_GATHER_INFO
2017-08-08Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2017-1148.nasl - Type : ACT_GATHER_INFO
2017-08-08Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2017-1149.nasl - Type : ACT_GATHER_INFO
2017-07-19Name : The remote Debian host is missing a security update.
File : debian_DLA-1030.nasl - Type : ACT_GATHER_INFO
2017-07-07Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-788.nasl - Type : ACT_GATHER_INFO
2017-07-05Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2017-1775-1.nasl - Type : ACT_GATHER_INFO
2017-06-29Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2017-1712-1.nasl - Type : ACT_GATHER_INFO
2017-06-23Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201706-26.nasl - Type : ACT_GATHER_INFO
2017-05-01Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2017-1033.nasl - Type : ACT_GATHER_INFO
2017-05-01Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2017-1034.nasl - Type : ACT_GATHER_INFO
2017-03-30Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2017-809.nasl - Type : ACT_GATHER_INFO
2017-03-10Name : The remote Debian host is missing a security update.
File : debian_DLA-850.nasl - Type : ACT_GATHER_INFO
2017-03-06Name : The remote Fedora host is missing a security update.
File : fedora_2017-e9171a0c00.nasl - Type : ACT_GATHER_INFO
2017-03-03Name : The remote Fedora host is missing a security update.
File : fedora_2017-8494d0142c.nasl - Type : ACT_GATHER_INFO
2017-02-28Name : The remote Fedora host is missing a security update.
File : fedora_2017-9b2cf468d5.nasl - Type : ACT_GATHER_INFO
2017-02-21Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-280.nasl - Type : ACT_GATHER_INFO
2017-02-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-595fec72ef.nasl - Type : ACT_GATHER_INFO
2017-02-14Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3786.nasl - Type : ACT_GATHER_INFO