PT-2024-23251 · Emacs+5 · Emacs+5
Ihor Radchenko
·
Published
2024-03-25
·
Updated
2025-05-01
·
CVE-2024-30202
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Emacs versions prior to 29.3
Org Mode versions prior to 9.6.23
Description
The issue allows arbitrary Lisp code to be evaluated as part of turning on Org mode.
Recommendations
For Emacs versions prior to 29.3, update to version 29.3 or later.
For Org Mode versions prior to 9.6.23, update to version 9.6.23 or later.
Fix
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Astra Linux
Debian
Emacs
Linuxmint
Org Mode
Ubuntu