Login Sign Up

CVE-2023-4734

7.8 HIGH
Denial of Service

📋 TL;DR

An integer overflow vulnerability in Vim before version 9.0.1846 allows attackers to cause a denial of service or potentially execute arbitrary code by opening specially crafted files. This affects all users running vulnerable Vim versions on any platform.

💻 Affected Systems

Products:
  • Vim
Versions: All versions prior to 9.0.1846
Operating Systems: All platforms running Vim (Linux, macOS, Windows, etc.)
Default Config Vulnerable: ⚠️ Yes
Notes: Apple macOS includes vulnerable Vim versions; see Apple security advisory

📦 What is this software?

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Vim by Vim

View all CVEs affecting Vim →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise when opening malicious files

🟠

Likely Case

Application crash (denial of service) when processing malformed input

🟢

If Mitigated

Limited to application crash if exploit fails or is detected

🌐 Internet-Facing: LOW - Vim is typically not directly internet-facing
🏢 Internal Only: MEDIUM - Users could be tricked into opening malicious files internally

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires user interaction (opening malicious file)

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 9.0.1846 and later

Vendor Advisory: https://github.com/vim/vim/commit/4c6fe2e2ea62469642ed1d80b16d39e616b25cf5

Restart Required: No

Instructions:

1. Update Vim using your package manager (apt/yum/brew) 2. Or compile from source using the patched version 3. For macOS, apply Apple security update

🔧 Temporary Workarounds

Restrict file opening

all

Limit Vim to opening only trusted files

Use alternative editor

all

Temporarily use a different text editor until patched

🧯 If You Can't Patch

  • Restrict Vim usage to trusted users only
  • Implement application whitelisting to prevent Vim execution

🔍 How to Verify

Check if Vulnerable:

Run 'vim --version' and check if version is below 9.0.1846

Check Version:

vim --version | head -1

Verify Fix Applied:

Confirm version is 9.0.1846 or higher with 'vim --version'

📡 Detection & Monitoring

Log Indicators:

  • Vim crash logs
  • Segmentation fault errors in system logs

Network Indicators:

  • Unusual file transfers to systems running Vim

SIEM Query:

process_name:vim AND (event_type:crash OR exit_code:139)

📊 Metadata

CVE ID: CVE-2023-4734
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-190
Published: September 2, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-4734, you might also want to check these:

CVE-2025-64721 10.0

This vulnerability in Sandboxie allows sandboxed processes to exploit an integer overflow in the Sbi...

Same vulnerability type (CWE-190)
CVE-2025-52581 9.8

An integer overflow vulnerability in libbiosig's GDF file parsing allows arbitrary code execution wh...

Same vulnerability type (CWE-190)
CVE-2025-53518 9.8

An integer overflow vulnerability in libbiosig's ABF file parser allows arbitrary code execution whe...

Same vulnerability type (CWE-190)