Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.15 views

Photon OS 5.0: Emacs PHSA-2023-5.0-0048

An update of the emacs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0048. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.8CVSS7.7AI score0.0112EPSS
Exploits0References3
Rosalinux
Rosalinux
added 2023/11/14 1:31 p.m.25 views

Advisory ROSA-SA-2023-2294

software: emacs 28.1 WASP: ROSA-CHROME packageevrstring: emacs-28.1-4.src.rpm CVE-ID: CVE-2023-27985 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: emacsclient-mail.desktop in Emacs 28.1-28.2 is vulnerable to injecting shell commands via the generated mailto: URI. This is due to an inconsistency with the...

7.8CVSS7.7AI score0.0112EPSS
Exploits0
CBLMariner
CBLMariner
added 2023/03/17 5:25 p.m.43 views

CVE-2023-27985 affecting package emacs for versions less than 28.2-4

CVE-2023-27985 affecting package emacs for versions less than 28.2-4. A patched version of the package is available...

7.8CVSS7.8AI score0.0112EPSS
Exploits0
NVD
NVD
added 2023/03/09 6:15 a.m.17 views

CVE-2023-27985

emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90...

7.8CVSS7.6AI score0.0112EPSS
Exploits0References5
OSV
OSV
added 2023/03/09 6:15 a.m.26 views

CVE-2023-27985

emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90...

7.8CVSS7.7AI score
Exploits0References5
OSV
OSV
added 2023/03/09 6:15 a.m.4 views

DEBIAN-CVE-2023-27985

emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90...

7.8CVSS7.3AI score0.0112EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/09 12:0 a.m.28 views

CVE-2023-27985

emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90...

7.8AI score0.0112EPSS
Exploits0References5
CVE
CVE
added 2023/03/09 12:0 a.m.101 views

CVE-2023-27985

CVE-2023-27985 affects Emacs up to version 28.2, specifically emacsclient-mail.desktop, where a crafted mailto: URI enables shell command injections due to Desktop Entry Specification noncompliance. The issue is documented as fixed in Emacs 29.0.90. Affected products/versions inferred from multip...

7.8CVSS7.3AI score0.0112EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2023/03/09 12:0 a.m.24 views

CVE-2023-27985

emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90...

7.8CVSS7.4AI score0.0112EPSS
Exploits0
Rows per page
Query Builder