Lucene search
+L

8 matches found

openvas
openvas
added 2024/09/12 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2024-2412)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.01312EPSS
Exploits0References2
amazon
amazon
added 2024/08/06 12:0 a.m.3 views

Important: emacs

Issue Overview: In Emacs before 29.3, Gnus treats inline MIME contents as trusted. CVE-2024-30203 In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments. CVE-2024-30204 In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mode...

9.8CVSS7AI score0.01312EPSS
Exploits0
mscve
mscve
added 2024/08/05 7:0 a.m.5 views

In Emacs before 29.4 org-link-expand-abbrev in lisp/ol.el expands a %(...) link abbrev even when it specifies an unsafe function such as shell-command-to-string. This affects Org Mode before 9.7.5.

...

9.8CVSS9.6AI score0.01312EPSS
Exploits0
osv
osv
added 2024/07/12 11:8 a.m.3 views

OESA-2024-1816 emacs security update

Emacs is the extensible, customizable, self-documenting real-time display editor. At its core is an interpreter for Emacs Lisp, a dialect of the Lisp programming language with extensions to support text editing. And it is an entire ecosystem of functionality beyond text editing, including a proje...

9.8CVSS6.9AI score0.01312EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2024/06/25 12:0 a.m.9 views

The vulnerability of the Org-Link-Expand-ABBREV function in the LISP/OL.EL text editor EMACS allows a hacker to execute arbitrary code.

The vulnerability of the Org-Link-Expand-ABBREV function in the LISP/OL.EL text editor EMACS exists due to the lack of measures taken to neutralize the special elements used in the operating system command. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by...

10CVSS7.9AI score0.01312EPSS
Exploits0References15Affected Software8
osv
osv
added 2024/06/23 10:15 p.m.8 views

AZL-42868 CVE-2024-39331 affecting package emacs for versions less than 29.4-1

In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %... link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5...

9.8CVSS7.2AI score0.01312EPSS
Exploits0References1
osv
osv
added 2024/06/23 10:15 p.m.8 views

AZL-42925 CVE-2024-39331 affecting package emacs for versions less than 29.4-1

In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %... link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5...

9.8CVSS7.2AI score0.01312EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/06/23 12:0 a.m.11 views

PT-2024-4296

Name of the Vulnerable Software and Affected Versions Emacs versions prior to 29.4 Org Mode versions prior to 9.7.5 Description The issue arises from the expansion of a %... link abbrev by the org-link-expand-abbrev function in lisp/ol.el, even when it specifies an unsafe function like...

10CVSS7.1AI score0.01312EPSS
Exploits0References86
Rows per page
Query Builder