Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emacs vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-30204
In Emacs prior to 29.3, LaTeX preview is enabled by default for e-mail attachments.
NA
CVE-2024-30202
In Emacs prior to 29.3, arbitrary Lisp code is evaluated as part of turning on Org mode. This affects Org Mode prior to 9.6.23.
7.8
CVSSv3
CVE-2023-28617
org-babel-execute:latex in ob-latex.el in Org Mode up to and including 9.6.1 for GNU Emacs allows malicious users to execute arbitrary commands via a file name or directory name that contains shell metacharacters.
Gnu Org Mode
NA
CVE-2024-30205
In Emacs prior to 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mode prior to 9.6.23.
NA
CVE-2008-2324
The Repair Permissions tool in Disk Utility in Apple Mac OS X 10.4.11 adds the setuid bit to the emacs executable file, which allows local users to gain privileges by executing commands within emacs.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
NA
CVE-2008-3949
emacs/lisp/progmodes/python.el in Emacs 22.1 and 22.2 imports Python script from the current working directory during editing of a Python file, which allows local users to execute arbitrary code via a Trojan horse Python file.
Suse Suse Linux
NA
CVE-2012-1103
emacs/notmuch-mua.el in Notmuch prior to 0.11.1, when using the Emacs interface, allows user-assisted remote malicious users to read arbitrary files via crafted MML tags, which are not properly quoted in an email reply cna cause the files to be attached to the message.
Notmuchmail Notmuch 0.11
Notmuchmail Notmuch 0.10.2
Notmuchmail Notmuch 0.10.1
Notmuchmail Notmuch 0.6
Notmuchmail Notmuch 0.5
Notmuchmail Notmuch 0.4
Notmuchmail Notmuch 0.10
Notmuchmail Notmuch 0.7
Notmuchmail Notmuch 0.6.1
Notmuchmail Notmuch 0.3
Notmuchmail Notmuch 0.1.1
Notmuchmail Notmuch 0.9
Notmuchmail Notmuch 0.8
Notmuchmail Notmuch 0.1
Notmuchmail Notmuch
Notmuchmail Notmuch 0.3.1
Notmuchmail Notmuch 0.2
NA
CVE-2004-0422
flim prior to 1.14.3 creates temporary files insecurely, which allows local users to overwrite arbitrary files of the Emacs user via a symlink attack.
Gnu Flim
NA
CVE-2003-0438
eldav WebDAV client for Emacs, version 0.7.2 and previous versions, allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.
Yuuichi Teranishi Eldav
NA
CVE-2007-5377
The (1) tramp-make-temp-file and (2) tramp-make-tramp-temp-file functions in Tramp 2.1.10 extension for Emacs, and possibly earlier 2.1.x versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Gnu Tramp 2.1.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »