Login Sign Up

CVE-2023-3896

7.8 HIGH
Denial of Service

📋 TL;DR

This vulnerability is a divide-by-zero error in Vim text editor versions 9.0.1367-1 through 9.0.1367-3. It allows attackers to crash Vim by opening specially crafted files, potentially leading to denial of service. Users running affected Vim versions on any operating system are vulnerable.

💻 Affected Systems

Products:
  • Vim
Versions: 9.0.1367-1 to 9.0.1367-3
Operating Systems: All operating systems running Vim
Default Config Vulnerable: ⚠️ Yes
Notes: All installations within the affected version range are vulnerable regardless of configuration.

📦 What is this software?

Vim by Vim

View all CVEs affecting Vim →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution if combined with other vulnerabilities, or persistent denial of service affecting text editing operations.

🟠

Likely Case

Application crash when opening malicious files, causing temporary loss of unsaved work and disruption to editing sessions.

🟢

If Mitigated

Minimal impact with proper file handling controls and user awareness about opening untrusted files.

🌐 Internet-Facing: LOW - Vim is typically not directly internet-facing; exploitation requires user interaction to open malicious files.
🏢 Internal Only: MEDIUM - Internal users could be targeted via malicious files in shared directories or email attachments.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires user interaction to open a malicious file. Proof-of-concept code is available in the GitHub issues.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 9.0.1367-4 and later

Vendor Advisory: https://github.com/vim/vim/security/advisories

Restart Required: No

Instructions:

1. Update Vim using your package manager: 'sudo apt update && sudo apt upgrade vim' (Debian/Ubuntu) or 'sudo yum update vim' (RHEL/CentOS). 2. Alternatively, compile from source using the patched version from the official Vim repository.

🔧 Temporary Workarounds

Avoid opening untrusted files

all

Do not open files from untrusted sources with Vim until patched.

Use alternative text editors

all

Temporarily use nano, emacs, or other text editors for handling files from untrusted sources.

🧯 If You Can't Patch

  • Restrict Vim usage to trusted users only and implement strict file handling policies.
  • Monitor system logs for Vim crashes and investigate any unusual file access patterns.

🔍 How to Verify

Check if Vulnerable:

Run 'vim --version' and check if the version is between 9.0.1367-1 and 9.0.1367-3.

Check Version:

vim --version | head -1

Verify Fix Applied:

After updating, run 'vim --version' to confirm version is 9.0.1367-4 or later.

📡 Detection & Monitoring

Log Indicators:

  • Vim segmentation fault or crash logs in system logs
  • Unexpected Vim process termination

Network Indicators:

  • File transfers to systems running vulnerable Vim versions

SIEM Query:

process_name:vim AND (event_type:crash OR exit_code:139)

📊 Metadata

CVE ID: CVE-2023-3896
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-369
Published: August 7, 2023
Last Updated: February 13, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-3896, you might also want to check these:

CVE-2021-32494 10.0

CVE-2021-32494 is a division by zero vulnerability in Radare2's Mach-O parser that allows attackers ...

Same vulnerability type (CWE-369)
CVE-2020-20892 8.8

A division by zero vulnerability in FFmpeg's lens correction filter allows attackers to cause denial...

Same vulnerability type (CWE-369)
CVE-2023-1127 7.8

CVE-2023-1127 is a divide-by-zero vulnerability in Vim text editor that can cause a crash or potenti...

Same vulnerability type (CWE-369)