Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2024/02/08 12:0 a.m.21 views

CentOS 8 : emacs (CESA-2023:1930)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:1930 advisory. - org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory nam...

7.8CVSS7.5AI score0.00469EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.25 views

EulerOS Virtualization 2.11.1 : emacs (EulerOS-SA-2023-2721)

According to the versions of the emacs package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a...

7.8CVSS7.5AI score0.00469EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.24 views

EulerOS 2.0 SP11 : emacs (EulerOS-SA-2023-2681)

According to the versions of the emacs package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or...

7.8CVSS7.6AI score0.00469EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/25 12:0 a.m.21 views

Oracle Linux 8 : emacs (ELSA-2023-3104)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-3104 advisory. 1:26.1-10.2 - Bump release 1:26.1-10.1 - Bump release 1:26.1-10 - Fix ob-latex.el command injection vulnerability 2180586 1:26.1-9 - Fix MH-E mail composition...

7.8CVSS7.5AI score0.00461EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/19 12:0 a.m.40 views

AlmaLinux 8 : emacs (ALSA-2023:3104)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:3104 advisory. - A flaw was found in the Emacs text editor. Processing a specially crafted org-mode code with the org- babel-execute:latex function in ob-latex.el can result in...

7.8CVSS7.5AI score0.00469EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/05/17 10:15 p.m.30 views

CVE-2023-2491

A flaw was found in the Emacs text editor. Processing a specially crafted org-mode code with the "org-babel-execute:latex" function in ob-latex.el can result in arbitrary command execution. This CVE exists because of a CVE-2023-28617 security regression for the emacs package in Red Hat Enterprise...

7.8CVSS7.1AI score0.00461EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/05/17 12:0 a.m.31 views

CVE-2023-2491

A flaw was found in the Emacs text editor. Processing a specially crafted org-mode code with the "org-babel-execute:latex" function in ob-latex.el can result in arbitrary command execution. This CVE exists because of a CVE-2023-28617 security regression for the emacs package in Red Hat Enterprise...

8.1AI score0.00461EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/09 12:0 a.m.22 views

EulerOS 2.0 SP10 : emacs (EulerOS-SA-2023-1801)

According to the versions of the emacs package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or...

7.8CVSS7.6AI score0.00469EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/05/09 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-1801)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.00469EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/05 12:0 a.m.89 views

Rocky Linux 9 : emacs (RLSA-2023:2074)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:2074 advisory. - org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name...

7.8CVSS7.5AI score0.00469EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2023/04/24 12:0 a.m.42 views

emacs security update

1:26.1-7.1 - Fix ob-latex.el command injection vulnerability 2180585...

7.8CVSS8.3AI score0.00469EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/04/20 12:0 a.m.23 views

RHEL 8 : emacs (RHSA-2023:1915)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1915 advisory. GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the...

7.8CVSS7.4AI score0.00469EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/04/06 12:0 a.m.35 views

Ubuntu 16.04 ESM : Emacs vulnerability (USN-6003-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6003-1 advisory. Xi Lu discovered that Emacs did not properly handle certain inputs. An attacker could possibly use this issue to execute arbitrary commands. Tenable has extracted...

7.8CVSS7.8AI score0.00469EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/04/04 12:0 a.m.29 views

Amazon Linux 2023 : emacs, emacs-common, emacs-devel (ALAS2023-2023-147)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-147 advisory. org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters...

7.8CVSS7.5AI score0.00469EPSS
Exploits0References4
Prion
Prion
added 2023/03/19 3:15 a.m.21 views

Design/Logic Flaw

org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters...

4.4CVSS7.8AI score0.00469EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2023/03/19 12:0 a.m.158 views

CVE-2023-28617

CVE-2023-28617 affects Org-Mode's ob-latex.el in GNU Emacs (pre-9.6.1) where org-babel-execute:latex can be triggered to run attacker-controlled commands if a file or directory name contains shell metacharacters. The issue is a code-injection path via shell metacharacters in filenames, leading to...

7.8CVSS7.9AI score0.00469EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder