Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:46239
HistoryApr 05, 2024 - 10:36 p.m.

Trust Boundary Violation

2024-04-0522:36:27
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
emacs
gnus
trust boundary
vulnerability
mime
processing

AI Score

6.1

Confidence

Low

EPSS

0.001

Percentile

17.1%

emacs is vulnerable to Trust Boundary Violation. The vulnerability is due to a flaw in the processing logic of Emacs Gnus, allows attackers to potentially exploit trust assumptions in Emacs Gnus, as it incorrectly treats inline MIME contents as trusted without appropriate validation.

Affected configurations

Vulners
Node
veracodeemacs\Matchsid1\27.1+1-3
OR
veracodeemacs\Matchsid1\27.1+1-3
OR
veracodeorg-mode\Matchsid9.4.0+dfsg-1
OR
veracodeemacs\Matchbuster1\26.1+1-3.2+deb10u1
OR
veracodeemacs\Matchbuster1\26.1+1-3.2+deb10u2
OR
veracodeemacs\Matchbullseye1\27.1+1-3
OR
veracodeemacs\Matchbookworm1\27.1+1-3.1
VendorProductVersionCPE
veracodeemacs\sidcpe:2.3:a:veracode:emacs\:sid:1\:27.1+1-3:*:*:*:*:*:*:*
veracodeorg-mode\sidcpe:2.3:a:veracode:org-mode\:sid:9.4.0+dfsg-1:*:*:*:*:*:*:*
veracodeemacs\bustercpe:2.3:a:veracode:emacs\:buster:1\:26.1+1-3.2+deb10u1:*:*:*:*:*:*:*
veracodeemacs\bustercpe:2.3:a:veracode:emacs\:buster:1\:26.1+1-3.2+deb10u2:*:*:*:*:*:*:*
veracodeemacs\bullseyecpe:2.3:a:veracode:emacs\:bullseye:1\:27.1+1-3:*:*:*:*:*:*:*
veracodeemacs\bookwormcpe:2.3:a:veracode:emacs\:bookworm:1\:27.1+1-3.1:*:*:*:*:*:*:*

References