vulnerability
Amazon Linux 2023: CVE-2024-30202: Important priority package update for emacs
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:M/Au:N/C:C/I:C/A:C) | Mar 25, 2024 | Feb 17, 2025 | Jul 4, 2025 |
Severity
7
CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Published
Mar 25, 2024
Added
Feb 17, 2025
Modified
Jul 4, 2025
Description
In Emacs before 29.3, arbitrary Lisp code is evaluated as part of turning on Org mode. This affects Org Mode before 9.6.23.
A flaw was found in Emacs. Arbitrary Lisp code can be evaluated when an Org mode file is opened or when the Org mode is being enabled, resulting in arbitrary code execution.
A flaw was found in Emacs. Arbitrary Lisp code can be evaluated when an Org mode file is opened or when the Org mode is being enabled, resulting in arbitrary code execution.
Solutions
amazon-linux-2023-upgrade-emacsamazon-linux-2023-upgrade-emacs-commonamazon-linux-2023-upgrade-emacs-common-debuginfoamazon-linux-2023-upgrade-emacs-debuginfoamazon-linux-2023-upgrade-emacs-debugsourceamazon-linux-2023-upgrade-emacs-develamazon-linux-2023-upgrade-emacs-filesystemamazon-linux-2023-upgrade-emacs-lucidamazon-linux-2023-upgrade-emacs-lucid-debuginfoamazon-linux-2023-upgrade-emacs-noxamazon-linux-2023-upgrade-emacs-nox-debuginfoamazon-linux-2023-upgrade-emacs-terminal
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.