CVE-2023-27985

CWE-78OS Command InjectionCWE-77Command Injection7 documents7 sources
Severity
7.8HIGH
EPSS
0.1%
top 66.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
GNU Emacs
Timeline
PublishedMar 9
Latest updateMar 14

Description

emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

Debianemacs< 1:28.2+1-13+2
NVDgnu/emacs28.128.2

Patches

Patch: git.savannah.gnu.orgPatch: www.openwall.comPatch: debbugs.gnu.org

🔴Vulnerability Details

3
GHSA
GHSA-f5fq-43fc-vgcr: emacsclient-mail2023-03-09
CVEList
CVE-2023-27985: emacsclient-mail2023-03-09
OSV
CVE-2023-27985: emacsclient-mail2023-03-09

📋Vendor Advisories

3
Microsoft
emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification.2023-03-14
Red Hat
emacs: Shell command injection via a crafted mailto URI2023-03-08
Debian
CVE-2023-27985: emacs - emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell comma...2023
CVE-2023-27985 (HIGH CVSS 7.8) | emacsclient-mail.desktop in Emacs 2 | cvebase.io