Arbitrary Code Execution Vulnerability in gvim 9.0.0000 Installer

Arbitrary Code Execution Vulnerability in gvim 9.0.0000 Installer

CVE-2022-37173 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An issue in the installer of gvim 9.0.0000 allows authenticated attackers to execute arbitrary code via a binary hijacking attack on C:\Program.exe.

Learn more about our Web Application Penetration Testing UK.