7 matches found
Photon OS 5.0: Emacs PHSA-2023-5.0-0048
An update of the emacs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0048. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Advisory ROSA-SA-2023-2294
software: emacs 28.1 WASP: ROSA-CHROME packageevrstring: emacs-28.1-4.src.rpm CVE-ID: CVE-2023-27985 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: emacsclient-mail.desktop in Emacs 28.1-28.2 is vulnerable to injecting shell commands via the generated mailto: URI. This is due to an inconsistency with the...
CBL Mariner 2.0 Security Update: emacs (CVE-2023-27986)
The version of emacs installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-27986 advisory. - emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to Emacs Lisp code injections through a...
CVE-2023-27986 affecting package emacs for versions less than 28.2-4
CVE-2023-27986 affecting package emacs for versions less than 28.2-4. A patched version of the package is available...
CVE-2023-27986
creationtimestamp| type| source ---|---|--- 2023-03-09 12:20:07+00:00| seen| https://t.me/cibsecurity/59721 2025-03-05 18:30:32+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6578 2025-03-06 02:16:33+00:00| seen| Telegram/5pevgS9s2bDPEHg8kf1AArCDrHZRG04q2CfUilHeZ0pz4v3d...
CVE-2023-27986
emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to Emacs Lisp code injections through a crafted mailto: URI with unescaped double-quote characters. It is fixed in 29.0.90...
CVE-2023-27986
emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to Emacs Lisp code injections through a crafted mailto: URI with unescaped double-quote characters. It is fixed in 29.0.90...