What is CVE-2021-4136?

CVE-2021-4136 is a vulnerability in Vim that has been addressed through an update.

Which software versions are affected by CVE-2021-4136?

CVE-2021-4136 affects Apple macOS Catalina, macOS Big Sur versions up to and exclusive of 11.6.6, and macOS Monterey versions up to and exclusive of 12.3.

How can I fix CVE-2021-4136?

To fix CVE-2021-4136, update your Vim installation to the latest version provided by the vendor.

Where can I find more information about CVE-2021-4136?

You can find more information about CVE-2021-4136 in the references provided by Apple.

Vulnerability/
CVE-2021-4136

high

7.8

CWE

122 119 787 20 416

19/12/2021

21/11/2024

CVE-2021-4136: Heap-based Buffer Overflow in vim/vim

First published: Sun Dec 19 2021(Updated: )

apache. Multiple issues were addressed by updating apache to version 2.4.53.

Credit: CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 CVE-2022-0156 CVE-2022-0158 CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 security@huntr.dev CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 security@huntr.dev Qi Sun Trend MicroRobert Ai Trend MicroArsenii Kostromin (0x3c3e) Yonghwi Jin @jinmo123 TheoriYonghwi Jin @jinmo123 TheoriLinus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Lockheed Martin Red Team an anonymous researcher Jeremy Brown Trend Micro Zero Day InitiativeMichael DePlante @izobashi Trend Micro Zero Day InitiativeQi Sun Trend MicroYe Zhang @co0py_Cat Baidu SecurityQi Sun Trend MicroRobert Ai Trend MicroArsenii Kostromin (0x3c3e) Yonghwi Jin @jinmo123 TheoriYonghwi Jin @jinmo123 TheoriLinus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Michael DePlante @izobashi Trend Micro Zero Day InitiativeQi Sun Trend MicroYe Zhang @co0py_Cat Baidu SecurityQi Sun Trend MicroRobert Ai Trend MicroArsenii Kostromin (0x3c3e) Yonghwi Jin @jinmo123 TheoriYonghwi Jin @jinmo123 TheoriLinus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 CVE-2021-44224 CVE-2021-44790 CVE-2022-22719 CVE-2022-22720 CVE-2022-22721 Lockheed Martin Red Team an anonymous researcher Jeremy Brown Trend Micro Zero Day InitiativeMichael DePlante @izobashi Trend Micro Zero Day InitiativeQi Sun Trend MicroYe Zhang @co0py_Cat Baidu SecurityQi Sun Trend MicroRobert Ai Trend MicroArsenii Kostromin (0x3c3e) Yonghwi Jin @jinmo123 TheoriYonghwi Jin @jinmo123 TheoriLinus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Liu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Jeremy Brown Trend Micro Zero Day InitiativeMichael DePlante @izobashi Trend Micro Zero Day InitiativeQi Sun Trend MicroYe Zhang @co0py_Cat Baidu SecurityQi Sun Trend MicroRobert Ai Trend MicroArsenii Kostromin (0x3c3e) Yonghwi Jin @jinmo123 TheoriYonghwi Jin @jinmo123 TheoriLinus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 an anonymous researcher Jeremy Brown Trend Micro Zero Day InitiativeMichael DePlante @izobashi Trend Micro Zero Day InitiativeQi Sun Trend MicroYe Zhang @co0py_Cat Baidu SecurityQi Sun Trend MicroRobert Ai Trend MicroArsenii Kostromin (0x3c3e) Yonghwi Jin @jinmo123 TheoriYonghwi Jin @jinmo123 TheoriLinus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Jack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Yonghwi Jin @jinmo123 TheoriYonghwi Jin @jinmo123 TheoriLinus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 an anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Ned Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Antonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Arsenii Kostromin (0x3c3e) Yonghwi Jin @jinmo123 TheoriYonghwi Jin @jinmo123 TheoriLinus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 an anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Linus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Qi Sun Trend MicroYe Zhang @co0py_Cat Baidu SecurityQi Sun Trend MicroRobert Ai Trend MicroArsenii Kostromin (0x3c3e) Yonghwi Jin @jinmo123 TheoriYonghwi Jin @jinmo123 TheoriLinus Henze Pinauten GmbHan anonymous researcher Liu Long Ant Security LightLiu Long Ant Security LightJack Dates RET2 Systems IncAntonio Zekic @antoniozekic Jeonghoon Shin Theori working with Trend Micro Zero Day Initiativean anonymous researcher Peter Nguyễn Vũ Hoàng @peternguyen14 STAR LabsNed Williamson Google Project Zero @gorelics BreakPoint BreakPointRon Masas BreakPointWojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Wojciech Reguła @_r3ggi SecuRingArsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Max Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Arsenii Kostromin (0x3c3e) MicrosoftJonathan Bar Or MicrosoftZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Zhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabMax Shavrick @_mxms the Google Security TeamZubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Zubair Ashraf CrowdstrikeMax Shavrick @_mxms the Google Security TeamCVE-2022-0778 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 CVE-2022-23308 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 CVE-2022-0778 Mickey Jin @patch1t Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Mickey Jin @patch1t @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Peter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Mickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Felix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 @gorelics an anonymous researcher Linus Henze Pinauten GmbHPeter Nguyễn Vũ Hoàng STAR LabsFelix Poulin-Belanger Peter Nguyễn Vũ Hoàng STAR LabsMickey Jin @patch1t Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Antonio Cheong Yu Xuan YCISCQArsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444 Arsenii Kostromin (0x3c3e) CVE-2021-4136 CVE-2021-4166 CVE-2021-4173 CVE-2021-4187 CVE-2021-4192 CVE-2021-4193 CVE-2021-46059 CVE-2022-0128 Heige KnownSec 404 TeamBo Qu Palo Alto NetworksScarlet Raine Wang Yu CyberservalCVE-2022-0530 Tavis Ormandy CVE-2021-45444

Affected Software	Affected Version	How to fix
Apple macOS Monterey	<12.3	12.3
Apple Catalina
Vim Vim	<8.2.3847
Fedoraproject Fedora	=34
Fedoraproject Fedora	=35
Apple Mac OS X	>=10.15<10.15.7
Apple Mac OS X	=10.15.7
Apple Mac OS X	=10.15.7-security_update_2020
Apple Mac OS X	=10.15.7-security_update_2020-001
Apple Mac OS X	=10.15.7-security_update_2020-005
Apple Mac OS X	=10.15.7-security_update_2020-007
Apple Mac OS X	=10.15.7-security_update_2021-001
Apple Mac OS X	=10.15.7-security_update_2021-002
Apple Mac OS X	=10.15.7-security_update_2021-003
Apple Mac OS X	=10.15.7-security_update_2021-006
Apple Mac OS X	=10.15.7-security_update_2021-007
Apple Mac OS X	=10.15.7-security_update_2021-008
Apple Mac OS X	=10.15.7-security_update_2022-001
Apple Mac OS X	=10.15.7-security_update_2022-002
Apple Mac OS X	=10.15.7-security_update_2022-003
Apple Mac OS X	=10.15.7-security_update_2022-004
Apple Mac OS X	=10.15.7-supplemental_update
Apple macOS	>=11.0<11.6.6
Apple macOS	>=12.0<12.3
Apple macOS	<11.6.6	11.6.6

Remedy

https://github.com/vim/vim/commit/605ec91e5a7330d61be313637e495fa02a6dc264

Remedy

https://huntr.dev/bounties/5c6b93c1-2d27-4e98-a931-147877b8c938

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2022-22633
CVE-2022-22669
CVE-2022-22665
CVE-2022-22630
CVE-2022-22631
CVE-2022-22625
CVE-2022-22648
CVE-2022-22626
CVE-2022-22627
CVE-2022-22597
CVE-2022-22616
CVE-2022-22663
CVE-2022-26691
CVE-2021-22946
CVE-2021-22947
CVE-2021-22945
CVE-2022-22643
CVE-2022-22657
CVE-2022-22664
CVE-2021-30977
CVE-2022-22611
CVE-2022-22612
CVE-2022-46706
CVE-2022-22661
CVE-2022-22641
CVE-2022-22613
CVE-2022-22614
CVE-2022-22615
CVE-2022-22632
CVE-2022-22638
CVE-2022-22640
CVE-2021-30946
CVE-2021-36976
CVE-2022-21658
CVE-2022-22647
CVE-2022-22656
CVE-2022-22672
CVE-2022-22644
CVE-2022-26690
CVE-2022-26688
CVE-2022-22617
CVE-2022-22609
CVE-2022-22650
CVE-2022-22655
CVE-2022-22600
CVE-2022-22599
CVE-2022-22651
CVE-2022-22639
CVE-2022-22660
CVE-2022-22621
CVE-2021-4136
CVE-2021-4166
CVE-2021-4173
CVE-2021-4187
CVE-2021-4192
CVE-2021-4193
CVE-2021-46059
CVE-2022-0128
CVE-2022-0156
CVE-2022-0158
CVE-2021-30918
CVE-2022-22662
CVE-2022-22610
CVE-2022-22624
CVE-2022-22628
CVE-2022-22629
CVE-2022-22637
CVE-2022-22668
CVE-2022-22582
CVE-2022-32832
CVE-2022-32826
CVE-2022-32797
CVE-2022-32853
CVE-2022-32851
CVE-2022-32831
CVE-2022-32910
CVE-2022-32820
CVE-2022-32805
CVE-2022-32849
CVE-2022-32839
CVE-2022-32781
CVE-2022-32819
CVE-2022-32787
CVE-2022-32785
CVE-2022-32812
CVE-2022-32811
CVE-2022-32815
CVE-2022-32813
CVE-2022-32823
CVE-2022-32786
CVE-2022-32800
CVE-2022-32838
CVE-2022-32843
CVE-2022-32842
CVE-2022-32799
CVE-2022-32857
CVE-2022-32807
CVE-2022-26704
CVE-2022-32834
CVE-2022-32860
CVE-2022-32837
CVE-2022-32847
CVE-2021-44224
CVE-2021-44790
CVE-2022-22719
CVE-2022-22720
CVE-2022-22721
CVE-2022-22675
CVE-2022-26751
CVE-2022-26698
CVE-2022-26697
CVE-2022-26721
CVE-2022-26722
CVE-2022-26763
CVE-2022-22674
CVE-2022-26720
CVE-2022-26770
CVE-2022-26756
CVE-2022-26769
CVE-2022-26748
CVE-2022-26768
CVE-2022-26714
CVE-2022-26757
CVE-2022-26767
CVE-2022-26706
CVE-2022-32882
CVE-2022-32790
CVE-2022-26776
CVE-2022-0778
CVE-2022-23308
CVE-2022-32794
CVE-2022-26712
CVE-2022-26746
CVE-2022-26731
CVE-2022-26766
CVE-2022-26718
CVE-2022-26723
CVE-2022-26715
CVE-2022-26728
CVE-2022-26726
CVE-2022-26755
CVE-2022-22589
CVE-2022-26745
CVE-2022-26761
CVE-2022-0530
CVE-2018-25032
CVE-2021-45444

Frequently Asked Questions

What is CVE-2021-4136?
CVE-2021-4136 is a vulnerability in Vim that has been addressed through an update.
Which software versions are affected by CVE-2021-4136?
CVE-2021-4136 affects Apple macOS Catalina, macOS Big Sur versions up to and exclusive of 11.6.6, and macOS Monterey versions up to and exclusive of 12.3.
How can I fix CVE-2021-4136?
To fix CVE-2021-4136, update your Vim installation to the latest version provided by the vendor.
Where can I find more information about CVE-2021-4136?
You can find more information about CVE-2021-4136 in the references provided by Apple.

collector/apple-support
alias/CVE-2021-4166
alias/CVE-2021-4173
alias/CVE-2021-4187
alias/CVE-2021-4192
alias/CVE-2021-4193
alias/CVE-2021-46059
alias/CVE-2022-0128
alias/CVE-2022-0156
alias/CVE-2022-0158
agent/type
agent/remedy
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/title
agent/first-publish-date
agent/last-modified-date
agent/author
agent/event
agent/trending
collector/nvd-index
agent/software-canonical-lookup-request
agent/softwarecombine
agent/source
agent/tags
source/Apple
agent/software-canonical-lookup
collector/nvd-api
source/NVD
alias/CVE-2022-22663
alias/CVE-2022-26721
alias/CVE-2022-26722
alias/CVE-2022-26763
alias/CVE-2022-22674
alias/CVE-2022-26720
alias/CVE-2022-26770
alias/CVE-2022-26756
alias/CVE-2022-26769
alias/CVE-2022-26748
alias/CVE-2022-26768
alias/CVE-2022-26714
alias/CVE-2022-26757
alias/CVE-2021-30946
alias/CVE-2022-26767
alias/CVE-2022-26706
alias/CVE-2022-32882
alias/CVE-2022-32790
alias/CVE-2022-26776
alias/CVE-2022-0778
alias/CVE-2022-23308
alias/CVE-2022-32794
alias/CVE-2022-26712
alias/CVE-2022-26746
alias/CVE-2022-26731
alias/CVE-2022-26766
alias/CVE-2022-26718
alias/CVE-2022-26723
alias/CVE-2022-26715
alias/CVE-2022-26728
alias/CVE-2022-26726
alias/CVE-2022-26755
alias/CVE-2021-4136
alias/CVE-2022-22589
alias/CVE-2022-26745
alias/CVE-2022-26761
alias/CVE-2022-0530
alias/CVE-2018-25032
alias/CVE-2021-45444
alias/CVE-2022-22675
alias/CVE-2022-22630
alias/CVE-2022-26751
alias/CVE-2022-26698
alias/CVE-2022-26697
alias/CVE-2021-44790
alias/CVE-2022-22719
alias/CVE-2022-22720
alias/CVE-2022-22721
alias/CVE-2022-22665
agent/weakness
agent/description
vendor/apple
canonical/apple macos monterey
canonical/apple catalina
vendor/vim
canonical/vim vim
vendor/fedoraproject
canonical/fedoraproject fedora
version/fedoraproject fedora/34
version/fedoraproject fedora/35
canonical/apple mac os x
version/apple mac os x/10.15
version/apple mac os x/10.15.7
version/apple mac os x/10.15.7-security_update_2020
version/apple mac os x/10.15.7-security_update_2020-001
version/apple mac os x/10.15.7-security_update_2020-005
version/apple mac os x/10.15.7-security_update_2020-007
version/apple mac os x/10.15.7-security_update_2021-001
version/apple mac os x/10.15.7-security_update_2021-002
version/apple mac os x/10.15.7-security_update_2021-003
version/apple mac os x/10.15.7-security_update_2021-006
version/apple mac os x/10.15.7-security_update_2021-007
version/apple mac os x/10.15.7-security_update_2021-008
version/apple mac os x/10.15.7-security_update_2022-001
version/apple mac os x/10.15.7-security_update_2022-002
version/apple mac os x/10.15.7-security_update_2022-003
version/apple mac os x/10.15.7-security_update_2022-004
version/apple mac os x/10.15.7-supplemental_update
canonical/apple macos
version/apple macos/11.0
version/apple macos/12.0

CVE-2021-4136: Heap-based Buffer Overflow in vim/vim

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Peer vulnerabilities

Frequently Asked Questions

What is CVE-2021-4136?

Which software versions are affected by CVE-2021-4136?

How can I fix CVE-2021-4136?

Where can I find more information about CVE-2021-4136?

Company

Resources

Contact