CVE-2025-1244
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
A command injection flaw was found in the text editor Emacs. It could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by tricking users into visiting a specially crafted website or an HTTP URL with a redirect.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
0 < 29.4.0 | affected | ||
| Red Hat | Red Hat Enterprise Linux 7 Extended Lifecycle Support | 1:24.3-23.el7_9.2 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8 | 1:26.1-13.el8_10 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8 | 1:26.1-13.el8_10 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.2 Advanced Update Support | 1:26.1-5.el8_2.3 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support | 1:26.1-5.el8_4.3 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.4 Telecommunications Update Service | 1:26.1-5.el8_4.3 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions | 1:26.1-5.el8_4.3 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support | 1:26.1-7.el8_6.6 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.6 Telecommunications Update Service | 1:26.1-7.el8_6.6 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions | 1:26.1-7.el8_6.6 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.8 Extended Update Support | 1:26.1-10.el8_8.7 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9 | 1:27.2-11.el9_5.1 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions | 1:27.2-6.el9_0.2 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9.2 Extended Update Support | 1:27.2-8.el9_2.2 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9.4 Extended Update Support | 1:27.2-10.el9_4.1 < * | unaffected |
| Red Hat | Builds for Red Hat OpenShift 1.3.2 | 1.3.1-1741784043 < * | unaffected |
Weaknesses
- CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Workarounds
There is no an existing or known mitigation for this issue without disabling part of the Emacs core functionality. However, by avoiding opening or view untrusted files, websites, HTTP URLs or other URI resources with Emacs would reduce or prevent the risk of performing this attack successfully.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
- https://debbugs.gnu.org/cgi/bugreport.cgi?bug=66390
- https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-30.1
- http://www.openwall.com/lists/oss-security/2025/03/01/2
- https://lists.debian.org/debian-lts-announce/2025/02/msg00033.html
References
- https://access.redhat.com/errata/RHSA-2025:1915
- https://access.redhat.com/errata/RHSA-2025:1917
- https://access.redhat.com/errata/RHSA-2025:1961
- https://access.redhat.com/errata/RHSA-2025:1962
- https://access.redhat.com/errata/RHSA-2025:1963
- https://access.redhat.com/errata/RHSA-2025:1964
- https://access.redhat.com/errata/RHSA-2025:2022
- https://access.redhat.com/errata/RHSA-2025:2130
- https://access.redhat.com/errata/RHSA-2025:2157
- https://access.redhat.com/errata/RHSA-2025:2195
- https://access.redhat.com/errata/RHSA-2025:2754
- https://access.redhat.com/security/cve/CVE-2025-1244
- https://bugzilla.redhat.com/show_bug.cgi?id=2345150
- https://git.savannah.gnu.org/cgit/emacs.git/commit/?id=820f0793f0b46448928905552726c1f1b999062f
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.