Lucene search
K

242 matches found

OSV
OSV
added 2025/03/27 12:41 a.m.7 views

USN-7375-1 org-mode vulnerabilities

It was discovered that Org Mode did not correctly handle filenames containing shell metacharacters. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. CVE-2023-28617 It was discovered that Org Mode could run...

9.8CVSS7.4AI score0.01312EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/03/27 12:0 a.m.12 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : Org Mode vulnerabilities (USN-7375-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7375-1 advisory. It was discovered that Org Mode did not correctly handle filenames containing shell metacharacters. An...

9.8CVSS8AI score0.01312EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/26 3:57 a.m.47 views

Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps

Summary Multiple vulnerabilities were addressed in IBM Cloud Pak for Watson AIOps version 4.2.0 Vulnerability Details CVEID:CVE-2023-24539 DESCRIPTION: Go is vulnerable to HTML injection. A remote attacker could inject malicious HTML code into a template containing multiple actions separated by a...

9.8CVSS9.7AI score0.01837EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-30202

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Emacs before 29.3, arbitrary Lisp code is evaluated as part of turning on Org mode. This affects Org Mode before 9.6.23. CVE-2024-30202 Note that Nessus reli...

7.8CVSS7.3AI score0.01099EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.10 views

Azure Linux 3.0 Security Update: emacs (CVE-2024-30202)

The version of emacs installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-30202 advisory. - In Emacs before 29.3, arbitrary Lisp code is evaluated as part of turning on Org mode. This affects Org Mode...

7.8CVSS7.6AI score0.01099EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.7 views

Azure Linux 3.0 Security Update: emacs (CVE-2024-39331)

The version of emacs installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39331 advisory. - In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %... link abbrev even when it specifies ...

9.8CVSS7.8AI score0.01312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.15 views

Azure Linux 3.0 Security Update: emacs (CVE-2024-30205)

The version of emacs installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-30205 advisory. - In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mode before...

7.1CVSS7.4AI score0.00482EPSS
Exploits0References2
OSV
OSV
added 2024/11/19 4:2 p.m.18 views

RLSA-2024:9302 Moderate: emacs security update

GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the capability to read e-mail and news. Security Fixes: emacs: Gnus treats inline MIME contents as trusted CVE-2024-30203 emacs: LaTeX preview is enabled...

7.1CVSS6.6AI score0.00579EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/19 12:0 a.m.17 views

RockyLinux 9 : emacs (RLSA-2024:9302)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:9302 advisory. emacs: Gnus treats inline MIME contents as trusted CVE-2024-30203 emacs: LaTeX preview is enabled by default for e-mail attachments CVE-2024-30204 emacs:...

7.1CVSS6.5AI score0.00579EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/11/12 8:58 a.m.3 views

emacs: Org mode considers contents of remote files to be trusted

A flaw was found in Emacs. Org mode considers the content of remote files, such as files opened with TRAMP on remote systems, to be trusted, resulting in arbitrary code execution...

7.1CVSS7.5AI score0.00482EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2024-2687)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.01312EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2024-2701)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.01312EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.11 views

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2024-2717)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.01312EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2024-2749)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.01312EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2024-2734)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.01312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/27 12:0 a.m.15 views

EulerOS Virtualization 2.12.0 : emacs (EulerOS-SA-2024-2767)

According to the versions of the emacs package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %... link abbrev even when it specifies an unsafe function, such...

9.8CVSS6.9AI score0.01312EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/10/27 12:0 a.m.16 views

EulerOS Virtualization 2.12.1 : emacs (EulerOS-SA-2024-2749)

According to the versions of the emacs package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %... link abbrev even when it specifies an unsafe function, such...

9.8CVSS6.9AI score0.01312EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/10/09 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2024-2502)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.01312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.31 views

EulerOS 2.0 SP11 : emacs (EulerOS-SA-2024-2552)

According to the versions of the emacs package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In Emacs before 29.3, Gnus treats inline MIME contents as trusted.CVE-2024-30203 In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands ...

9.8CVSS6.9AI score0.01312EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.23 views

EulerOS 2.0 SP11 : emacs (EulerOS-SA-2024-2578)

According to the versions of the emacs package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In Emacs before 29.3, Gnus treats inline MIME contents as trusted.CVE-2024-30203 In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands ...

9.8CVSS6.9AI score0.01312EPSS
Exploits0References3
Rows per page
Query Builder