Lucene search

CVE-2022-48337

🗓️ 20 Feb 2023 23:12:15Reported by mitreType

GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file

Reporter	Title	Published	Views	Family All 134
RedhatCVE	CVE-2022-48337	21 Feb 202306:29	–	redhatcve
Veracode	Command Injection	11 Mar 202319:20	–	veracode
Prion	Input validation	20 Feb 202323:15	–	prion
AlpineLinux	CVE-2022-48337	20 Feb 202323:15	–	alpinelinux
Debian CVE	CVE-2022-48337	20 Feb 202323:15	–	debiancve
CBLMariner	CVE-2022-48337 affecting package emacs for versions less than 28.2-4	17 Mar 202317:25	–	cbl_mariner
OSV	CVE-2022-48337	20 Feb 202323:15	–	osv
OSV	RHSA-2023:7083 Red Hat Security Advisory: emacs security update	16 Sep 202411:27	–	osv
OSV	Moderate: emacs security update	14 Nov 202300:00	–	osv
OSV	RHSA-2024:1408 Red Hat Security Advisory: emacs security update	16 Sep 202411:27	–	osv

Nvd

Node

gnu emacsRange≤28.2

Node

debian debian_linuxMatch11.0

Source	Link
debian	www.debian.org/security/2023/dsa-5360
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FLPQ4K6H2S5TY3L5UDN4K4B3L5RQJYQ6/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U6HDBUQNAH2WL4MHWCTUZLN7NGF7CHTK/
git	www.git.savannah.gnu.org/cgit/emacs.git/commit/
lists	www.lists.debian.org/debian-lts-announce/2023/05/msg00008.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Feb 2023 23:15Current

9.5High risk

Vulners AI Score9.5

CVSS39.8

EPSS0.0033

CWE-78