CVE-2025-1244 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.8 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 80%

openSUSE / SLES Releases

openSUSE Product

Release

emacs

suse enterprise desktop 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise desktop 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise server 12 SP3	24.3-25.23.1 fixed
suse enterprise server 12 SP5	24.3-25.23.1 fixed
suse enterprise server 15 SP2	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP3	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP7	27.2-150400.3.23.2 fixed

emacs-el

suse enterprise desktop 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise desktop 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise server 12 SP3	24.3-25.23.1 fixed
suse enterprise server 12 SP5	24.3-25.23.1 fixed
suse enterprise server 15 SP2	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP3	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP7	27.2-150400.3.23.2 fixed

emacs-info

suse enterprise desktop 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise desktop 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise server 12 SP3	24.3-25.23.1 fixed
suse enterprise server 12 SP5	24.3-25.23.1 fixed
suse enterprise server 15 SP2	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP3	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP7	27.2-150400.3.23.2 fixed

emacs-nox

suse enterprise desktop 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise desktop 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise server 12 SP3	24.3-25.23.1 fixed
suse enterprise server 12 SP5	24.3-25.23.1 fixed
suse enterprise server 15 SP2	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP3	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP7	27.2-150400.3.23.2 fixed

emacs-x11

suse enterprise sap 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise server 12 SP3	24.3-25.23.1 fixed
suse enterprise server 12 SP5	24.3-25.23.1 fixed
suse enterprise server 15 SP2	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP3	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP5	27.2-150400.3.23.2 fixed

etags

suse enterprise desktop 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise desktop 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise sap 15 SP7	27.2-150400.3.23.2 fixed
suse enterprise server 12 SP3	24.3-25.23.1 fixed
suse enterprise server 12 SP5	24.3-25.23.1 fixed
suse enterprise server 15 SP2	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP3	25.3-150000.3.25.3 fixed
suse enterprise server 15 SP4	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP5	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP6	27.2-150400.3.23.2 fixed
suse enterprise server 15 SP7	27.2-150400.3.23.2 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

emacs

RHEL 8	1:26.1-13.el8_10 fixed
RHEL 8.2 AUS	1:26.1-5.el8_2.3 fixed
RHEL 8.4 AUS	1:26.1-5.el8_4.3 fixed
RHEL 8.4 E4S	1:26.1-5.el8_4.3 fixed
RHEL 8.4 TUS	1:26.1-5.el8_4.3 fixed
RHEL 8.6 AUS	1:26.1-7.el8_6.6 fixed
RHEL 8.6 E4S	1:26.1-7.el8_6.6 fixed
RHEL 8.6 TUS	1:26.1-7.el8_6.6 fixed
RHEL 8.8 AUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 E4S	1:26.1-10.el8_8.7 fixed
RHEL 8.8 EUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 TUS	1:26.1-10.el8_8.7 fixed
RHEL 9	1:27.2-11.el9_5.1 fixed

emacs-common

RHEL 8	1:26.1-13.el8_10 fixed
RHEL 8.2 AUS	1:26.1-5.el8_2.3 fixed
RHEL 8.4 AUS	1:26.1-5.el8_4.3 fixed
RHEL 8.4 E4S	1:26.1-5.el8_4.3 fixed
RHEL 8.4 TUS	1:26.1-5.el8_4.3 fixed
RHEL 8.6 AUS	1:26.1-7.el8_6.6 fixed
RHEL 8.6 E4S	1:26.1-7.el8_6.6 fixed
RHEL 8.6 TUS	1:26.1-7.el8_6.6 fixed
RHEL 8.8 AUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 E4S	1:26.1-10.el8_8.7 fixed
RHEL 8.8 EUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 TUS	1:26.1-10.el8_8.7 fixed
RHEL 9	1:27.2-11.el9_5.1 fixed

emacs-filesystem

RHEL 8	1:26.1-13.el8_10 fixed
RHEL 8.2 AUS	1:26.1-5.el8_2.3 fixed
RHEL 8.4 AUS	1:26.1-5.el8_4.3 fixed
RHEL 8.4 E4S	1:26.1-5.el8_4.3 fixed
RHEL 8.4 TUS	1:26.1-5.el8_4.3 fixed
RHEL 8.6 AUS	1:26.1-7.el8_6.6 fixed
RHEL 8.6 E4S	1:26.1-7.el8_6.6 fixed
RHEL 8.6 TUS	1:26.1-7.el8_6.6 fixed
RHEL 8.8 AUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 E4S	1:26.1-10.el8_8.7 fixed
RHEL 8.8 EUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 TUS	1:26.1-10.el8_8.7 fixed
RHEL 9	1:27.2-11.el9_5.1 fixed

emacs-lucid

RHEL 8	1:26.1-13.el8_10 fixed
RHEL 8.2 AUS	1:26.1-5.el8_2.3 fixed
RHEL 8.4 AUS	1:26.1-5.el8_4.3 fixed
RHEL 8.4 E4S	1:26.1-5.el8_4.3 fixed
RHEL 8.4 TUS	1:26.1-5.el8_4.3 fixed
RHEL 8.6 AUS	1:26.1-7.el8_6.6 fixed
RHEL 8.6 E4S	1:26.1-7.el8_6.6 fixed
RHEL 8.6 TUS	1:26.1-7.el8_6.6 fixed
RHEL 8.8 AUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 E4S	1:26.1-10.el8_8.7 fixed
RHEL 8.8 EUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 TUS	1:26.1-10.el8_8.7 fixed
RHEL 9	1:27.2-11.el9_5.1 fixed

emacs-nox

RHEL 8	1:26.1-13.el8_10 fixed
RHEL 8.2 AUS	1:26.1-5.el8_2.3 fixed
RHEL 8.4 AUS	1:26.1-5.el8_4.3 fixed
RHEL 8.4 E4S	1:26.1-5.el8_4.3 fixed
RHEL 8.4 TUS	1:26.1-5.el8_4.3 fixed
RHEL 8.6 AUS	1:26.1-7.el8_6.6 fixed
RHEL 8.6 E4S	1:26.1-7.el8_6.6 fixed
RHEL 8.6 TUS	1:26.1-7.el8_6.6 fixed
RHEL 8.8 AUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 E4S	1:26.1-10.el8_8.7 fixed
RHEL 8.8 EUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 TUS	1:26.1-10.el8_8.7 fixed
RHEL 9	1:27.2-11.el9_5.1 fixed

emacs-terminal

RHEL 8	1:26.1-13.el8_10 fixed
RHEL 8.2 AUS	1:26.1-5.el8_2.3 fixed
RHEL 8.4 AUS	1:26.1-5.el8_4.3 fixed
RHEL 8.4 E4S	1:26.1-5.el8_4.3 fixed
RHEL 8.4 TUS	1:26.1-5.el8_4.3 fixed
RHEL 8.6 AUS	1:26.1-7.el8_6.6 fixed
RHEL 8.6 E4S	1:26.1-7.el8_6.6 fixed
RHEL 8.6 TUS	1:26.1-7.el8_6.6 fixed
RHEL 8.8 AUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 E4S	1:26.1-10.el8_8.7 fixed
RHEL 8.8 EUS	1:26.1-10.el8_8.7 fixed
RHEL 8.8 TUS	1:26.1-10.el8_8.7 fixed

Common Weakness Enumeration

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
The software constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References

https://access.redhat.com/errata/RHSA-2025:1915

https://access.redhat.com/errata/RHSA-2025:1917

https://access.redhat.com/errata/RHSA-2025:1961

https://access.redhat.com/errata/RHSA-2025:1962

https://access.redhat.com/errata/RHSA-2025:1963

https://access.redhat.com/errata/RHSA-2025:1964

https://access.redhat.com/errata/RHSA-2025:2022

https://access.redhat.com/errata/RHSA-2025:2130

https://access.redhat.com/errata/RHSA-2025:2157

https://access.redhat.com/errata/RHSA-2025:2195

https://access.redhat.com/errata/RHSA-2025:2754

https://access.redhat.com/security/cve/CVE-2025-1244

https://bugzilla.redhat.com/show_bug.cgi?id=2345150

http://www.openwall.com/lists/oss-security/2025/03/01/2

https://debbugs.gnu.org/cgi/bugreport.cgi?bug=66390

https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-30.1

https://lists.debian.org/debian-lts-announce/2025/02/msg00033.html