Lucene search

Redhat.comRH:CVE-2024-30202

HistoryMay 14, 2024 - 4:11 a.m.

CVE-2024-30202

2024-05-1404:11:13

redhat.com

access.redhat.com

emacs

org mode

arbitrary code execution

flaw

mitigation

AI Score

6.6

Confidence

Low

EPSS

Percentile

15.5%

JSON

A flaw was found in Emacs. Arbitrary Lisp code can be evaluated when an Org mode file is opened or when the Org mode is being enabled, resulting in arbitrary code execution.

Mitigation

Do not open Org mode files from untrusted sources.

References

bugzilla.redhat.com/show_bug.cgi?id=2280295

nvd.nist.gov/vuln/detail/CVE-2024-30202

www.cve.org/CVERecord?id=CVE-2024-30202

www.openwall.com/lists/oss-security/2024/03/25/2