CVE-2024-39331 | GNU Emacs up to 29.3 lisp/ol.el org-link-expand-abbrev os command injection

Posted by Angelo Barbosa | Jun 24, 2024 | CVE

A vulnerability was found in GNU Emacs up to 29.3. It has been rated as critical. This issue affects the function org-link-expand-abbrev of the file lisp/ol.el. The manipulation leads to os command injection.

The identification of this vulnerability is CVE-2024-39331. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39331 | GNU Emacs up to 29.3 lisp/ol.el org-link-expand-abbrev os command injection

Related Posts

CVE-2024-36177 | Adobe Experience Manager up to 6.5.20 cross site scripting (apsb24-28)

CVE-2023-7068 | webtoffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels Plugin Order Export authorization

CVE-2024-25081 | FontForge up to 20230101 Splinefont command injection

CVE-2023-49708 | Joomstar Starshop Component 1.0.0-1.0.9 on Joomla sql injection