{"id":"CVE-2024-30205","details":"In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mode before 9.6.23.","modified":"2026-04-16T04:31:44.130238502Z","published":"2024-03-25T15:15:52.567Z","related":["ALSA-2024:6987","SUSE-SU-2024:1294-1","SUSE-SU-2024:1317-1","SUSE-SU-2024:2297-1"],"references":[{"type":"ADVISORY","url":"https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-29"},{"type":"FIX","url":"https://git.savannah.gnu.org/cgit/emacs/org-mode.git/commit/?id=4255d5dcc0657915f90e4fba7e0a5514cced514d"},{"type":"FIX","url":"https://git.savannah.gnu.org/cgit/emacs.git/commit/?h=emacs-29&id=2bc865ace050ff118db43f01457f95f95112b877"},{"type":"ARTICLE","url":"https://lists.debian.org/debian-lts-announce/2024/04/msg00023.html"},{"type":"ARTICLE","url":"https://lists.debian.org/debian-lts-announce/2024/04/msg00024.html"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2024/03/25/2"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"29.3"}]},{"events":[{"introduced":"0"},{"fixed":"9.6.23"}]},{"events":[{"introduced":"0"},{"last_affected":"10.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-30205.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"}]}