Lucene search
+L

378 matches found

Vulnrichment
Vulnrichment
added 2024/11/27 12:0 a.m.10 views

CVE-2024-53920

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. This unsafe expansion also occurs if a user chooses to...

8.8AI score0.00526EPSS
Exploits0References6
CVE
CVE
added 2024/11/27 12:0 a.m.150 views

CVE-2024-53920

In GNU Emacs (elisp-mode.el) prior to 30.1, invoking elisp-completion-at-point on untrusted Emacs Lisp can trigger unsafe Lisp macro expansion, enabling arbitrary code execution. This also occurs if on-the-fly diagnosis causes byte compilation of untrusted code. Root cause: unsafe macro expansion...

7.8CVSS8.8AI score0.00526EPSS
Exploits0References7Affected Software1
CNNVD
CNNVD
added 2024/11/27 12:0 a.m.2 views

GNU Emacs 安全漏洞

GNU Emacs is a family of text editors in the American GNU community. A code execution vulnerability exists in GNU Emacs, which stems from the fact that a user who chooses to call elisp-completion-at-point on untrusted source code may trigger an insecure macro expansion that can be exploited by an...

7.8CVSS7.9AI score0.00526EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2024/11/27 12:0 a.m.10 views

CVE-2024-53920

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. This unsafe expansion also occurs if a user chooses to...

7.8CVSS8.2AI score0.00526EPSS
Exploits0
OSV
OSV
added 2024/11/19 4:2 p.m.18 views

RLSA-2024:9302 Moderate: emacs security update

GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the capability to read e-mail and news. Security Fixes: emacs: Gnus treats inline MIME contents as trusted CVE-2024-30203 emacs: LaTeX preview is enabled...

7.1CVSS6.6AI score0.00579EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/11/12 8:58 a.m.32 views

Moderate: Red Hat Security Advisory: emacs security update

An update for emacs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.1CVSS6.7AI score0.00579EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 3:7 a.m.325 views

Moderate: Red Hat Security Advisory: emacs security update

An update for emacs is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS6.9AI score0.01312EPSS
Exploits0References4
OSV
OSV
added 2024/09/24 12:0 a.m.24 views

ALSA-2024:6987 Moderate: emacs security update

GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the capability to read e-mail and news. Security Fixes: emacs: Gnus treats inline MIME contents as trusted CVE-2024-30203 emacs: Org mode considers...

9.8CVSS8.1AI score0.01312EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2024/09/24 12:0 a.m.59 views

Moderate: emacs security update

GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the capability to read e-mail and news. Security Fixes: emacs: Gnus treats inline MIME contents as trusted CVE-2024-30203 emacs: Org mode considers...

9.8CVSS7.1AI score0.01312EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2024/09/09 12:0 a.m.25 views

Moderate: emacs security update

GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the capability to read e-mail and news. Security Fixes: emacs: org-link-expand-abbrev: Do not evaluate arbitrary unsafe Elisp code CVE-2024-39331 For mor...

9.8CVSS7AI score0.01312EPSS
Exploits0References4
OSV
OSV
added 2024/09/09 12:0 a.m.12 views

ALSA-2024:6510 Moderate: emacs security update

GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the capability to read e-mail and news. Security Fixes: emacs: org-link-expand-abbrev: Do not evaluate arbitrary unsafe Elisp code CVE-2024-39331 For mor...

9.8CVSS8.8AI score0.01312EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/09/09 12:0 a.m.37 views

RHEL 9 : emacs (RHSA-2024:6510)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:6510 advisory. GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the...

9.8CVSS8.1AI score0.01312EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/03 4:11 p.m.20 views

Moderate: Red Hat Security Advisory: emacs security update

An update for emacs is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

9.8CVSS7.3AI score0.01312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.20 views

RHEL 8 : emacs (RHSA-2024:6203)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:6203 advisory. GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the...

9.8CVSS8.1AI score0.01312EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/08/17 12:0 a.m.4 views

PT-2024-9089

Name of the Vulnerable Software and Affected Versions GNU Emacs versions through 30.0.92 Description The issue is related to the elisp-completion-at-point function in GNU Emacs, which can trigger unsafe Lisp macro expansion when used on untrusted Emacs Lisp source code. This allows attackers to...

10CVSS8AI score0.00526EPSS
Exploits0References55
RedHat Linux
RedHat Linux
added 2024/08/01 8:10 a.m.33 views

Moderate: Red Hat Security Advisory: emacs security update

An update for emacs is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...

9.8CVSS7.3AI score0.01312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/01 12:0 a.m.24 views

RHEL 8 : emacs (RHSA-2024:4971)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4971 advisory. GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the...

9.8CVSS8.1AI score0.01312EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/07/01 12:0 a.m.23 views

GLSA-202407-08 : GNU Emacs, Org Mode: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202407-08 GNU Emacs, Org Mode: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in GNU Emacs. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description...

9.8CVSS6.5AI score0.01639EPSS
Exploits0References10
Gentoo Linux
Gentoo Linux
added 2024/07/01 12:0 a.m.30 views

GNU Emacs, Org Mode: Multiple Vulnerabilities

Background GNU Emacs is a highly extensible and customizable text editor. Description Multiple vulnerabilities have been discovered in GNU Emacs. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no...

9.8CVSS7.6AI score0.01639EPSS
Exploits0
Debian
Debian
added 2024/06/29 6:24 a.m.13 views

[SECURITY] [DLA 3849-1] org-mode security update

Debian LTS Advisory DLA-3849-1 [email protected] https://www.debian.org/lts/security/ Sean Whitton June 29, 2024 https://wiki.debian.org/LTS Package : emacs Version : emacs 1:26.1+1-3.2+deb10u6 CVE ID : CVE-2024-39331 Debian Bug : 1074136 A vulnerability was discovered in GNU Emacs, the...

9.8CVSS7.7AI score0.01312EPSS
Exploits0
Rows per page
Query Builder