Gnu Org Mode vulnerabilities
5 known vulnerabilities affecting gnu/org_mode.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2024-30202HIGHCVSS 7.8fixed in 9.6.232024-03-25
CVE-2024-30202 [HIGH] CWE-94 CVE-2024-30202: In Emacs before 29.3, arbitrary Lisp code is evaluated as part of turning on Org mode. This affects
In Emacs before 29.3, arbitrary Lisp code is evaluated as part of turning on Org mode. This affects Org Mode before 9.6.23.
nvd
CVE-2024-30205HIGHCVSS 7.1fixed in 9.6.232024-03-25
CVE-2024-30205 [HIGH] CWE-494 CVE-2024-30205: In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mo
In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mode before 9.6.23.
nvd
CVE-2024-30203MEDIUMCVSS 5.5fixed in 9.6.232024-03-25
CVE-2024-30203 [MEDIUM] CVE-2024-30203: In Emacs before 29.3, Gnus treats inline MIME contents as trusted.
In Emacs before 29.3, Gnus treats inline MIME contents as trusted.
nvd
CVE-2024-30204LOWCVSS 2.8fixed in 9.6.232024-03-25
CVE-2024-30204 [LOW] CWE-276 CVE-2024-30204: In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
nvd
CVE-2023-28617HIGHCVSS 7.8≤ 9.6.12023-03-19
CVE-2023-28617 [HIGH] CWE-78 CVE-2023-28617: org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to e
org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters.
nvd