CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Amazon•added 2025/03/06 12:0 a.m.•8 views

Important: emacs

Issue Overview: A flaw was found in the Emacs text editor. Improper handling of custom "man" URI schemes allows attackers to execute arbitrary shell commands by tricking users into visiting a specially crafted website or an HTTP URL with a redirect. CVE-2025-1244 Affected Packages: emacs Issue...

8.8CVSS7.8AI score0.02679EPSS

Exploits0

Tenable Nessus•added 2025/03/05 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2021-42375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An incorrect handling of a special element in Busybox's ash applet leads to denial of service when processing a crafted shell command, due to the shell mistakin...

5.5CVSS6.8AI score0.00378EPSS

Exploits0References2

Tenable Nessus•added 2025/03/04 12:0 a.m.•15 views

Linux Distros Unpatched Vulnerability : CVE-2015-20107

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Python aka CPython up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow...

8CVSS7.2AI score0.06705EPSS

Exploits1References2

OSV•added 2025/03/03 5:15 p.m.•4 views

AZL-57735 CVE-2025-27423 affecting package vim for versions less than 9.1.1164-1

Vim is an open source, command line text editor. Vim is distributed with the tar.vim plugin, that allows easy editing and viewing of compressed or uncompressed tar files. Starting with 9.1.0858, the tar.vim plugin uses the ":read" ex command line to append below the cursor position, however the i...

7.1CVSS7.4AI score0.20775EPSS

OSV•added 2025/03/03 5:15 p.m.•0 views

UBUNTU-CVE-2025-27423

7.1CVSS6.3AI score0.20775EPSS

Exploits0References5

Cvelist•added 2025/03/03 4:30 p.m.•15 views

CVE-2025-27423 Improper Input Validation in Vim

7.1CVSS0.20775EPSS

AlpineLinux•added 2025/03/03 4:30 p.m.•17 views

CVE-2025-27423

7.1CVSS7.6AI score0.20775EPSS

FreeBSD•added 2025/03/03 12:0 a.m.•11 views

vim -- Improper Input Validation in Vim

[email protected] reports: Vim is distributed with the tar.vim plugin, that allows easy editing and viewing of compressed or uncompressed tar files. Starting with 9.1.0858, the tar.vim plugin uses the ":read" ex command line to append below the cursor position, however the is not...

7.1CVSS7.4AI score0.20775EPSS

Positive Technologies•added 2025/03/02 12:0 a.m.•4 views

PT-2025-9524 · Vim +3 · Vim +3

Name of the Vulnerable Software and Affected Versions: Vim versions 9.1.0858 through 9.1.1163 Description: Vim is an open source, command line text editor that is distributed with the tar.vim plugin. This plugin allows easy editing and viewing of compressed or uncompressed tar files. However,...

7.1CVSS5AI score0.20775EPSS

Exploits0References52

Debian•added 2025/02/27 7:48 a.m.•9 views

[BSA-122] Security Update for emacs

Sean Whitton uploaded new packages for emacs which fixed the following security problems: CVE-2024-53920 Several ways to trigger arbitrary code execution were discovered in Emacss support for editing files in its own dialect of Lisp. These include arbitrary code execution upon opening an otherwis...

8.8CVSS7.8AI score0.02679EPSS

Exploits0

Tenable Nessus•added 2025/02/22 12:0 a.m.•8 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : emacs (SUSE-SU-2025:0599-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0599-1 advisory. - CVE-2025-1244: improper handling of custom 'man' URI schemes allow for shell command injections...

8.8CVSS7.9AI score0.02679EPSS

Tenable Nessus•added 2025/02/20 12:0 a.m.•13 views

SUSE SLES15 Security Update : emacs (SUSE-SU-2025:0589-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0589-1 advisory. - CVE-2025-1244: improper handling of custom 'man' URI schemes allow for shell command injections. bsc1237091 Tenable has extracted the...

8.8CVSS7.9AI score0.02679EPSS

OSV•added 2025/02/19 4:9 p.m.•6 views

SUSE-SU-2025:0599-1 Security update for emacs

This update for emacs fixes the following issues: - CVE-2025-1244: improper handling of custom 'man' URI schemes allow for shell command injections. bsc1237091...

8.8CVSS9.1AI score0.02679EPSS

OSV•added 2025/02/19 10:31 a.m.•6 views

SUSE-SU-2025:0589-1 Security update for emacs

This update for emacs fixes the following issues: - CVE-2025-1244: improper handling of custom 'man' URI schemes allow for shell command injections. bsc1237091...

8.8CVSS9.1AI score0.02679EPSS

SUSE Linux•added 2025/02/18 9:36 a.m.•2 views

Security update for emacs

This update for emacs fixes the following issues: CVE-2025-1244: improper handling of custom "man" URI schemes allow for shell command injections. bsc1237091 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.8CVSS7.4AI score0.02679EPSS

OSV•added 2025/02/18 9:36 a.m.•8 views

SUSE-SU-2025:0574-1 Security update for emacs

This update for emacs fixes the following issues: - CVE-2025-1244: improper handling of custom 'man' URI schemes allow for shell command injections. bsc1237091...

8.8CVSS9.1AI score0.02679EPSS

CNVD•added 2025/02/17 12:0 a.m.•8 views

GNU Emacs OS Command Injection Vulnerability

GNU Emacs is a family of text editors in the American GNU community. GNU Emacs suffers from an operating system command injection vulnerability that stems from mishandling of the custom "man" URI scheme, which can be exploited to execute arbitrary shell commands...

8.8CVSS7.7AI score0.02679EPSS