First published: Sat Sep 02 2023(Updated: )
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.
Credit: security@huntr.dev security@huntr.dev CVE-2023-4733 CVE-2023-4734 CVE-2023-4735 CVE-2023-4736 CVE-2023-4738 CVE-2023-4750 CVE-2023-4751 CVE-2023-4752 CVE-2023-4781
Affected Software | Affected Version | How to fix |
---|---|---|
Vim Vim | <9.0.1833 | |
Apple macOS | =14.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The severity of CVE-2023-4736 is high.
CVE-2023-4736 is a vulnerability in the GitHub repository vim/vim prior to 9.0.1833, which allows an attacker to exploit an untrusted search path.
CVE-2023-4736 affects Vim versions prior to 9.0.1833.
To fix CVE-2023-4736, update Vim to version 9.0.1833 or above.
You can find more information about CVE-2023-4736 at the following references: [Reference 1](https://github.com/vim/vim/commit/816fbcc262687b81fc46f82f7bbeb1453addfe0c), [Reference 2](https://huntr.dev/bounties/e1ce0995-4df4-4dec-9cd7-3136ac3e8e71).