{"id":"CVE-2024-30202","details":"In Emacs before 29.3, arbitrary Lisp code is evaluated as part of turning on Org mode. This affects Org Mode before 9.6.23.","modified":"2026-05-01T04:31:15.515904Z","published":"2024-03-25T00:00:00Z","database_specific":{"unresolved_ranges":[{"extracted_events":[{"fixed":"29.3"},{"fixed":"9.6.23"}],"source":"DESCRIPTION"}],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/30xxx/CVE-2024-30202.json","cna_assigner":"mitre"},"references":[{"type":"WEB","url":"https://git.savannah.gnu.org/cgit/emacs.git/commit/?h=emacs-29&id=befa9fcaae29a6c9a283ba371c3c5234c7f644eb"},{"type":"WEB","url":"https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-29"},{"type":"WEB","url":"https://git.savannah.gnu.org/cgit/emacs/org-mode.git/commit/?id=003ddacf1c8d869b1858181c29ea21b731a8d8d9"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/30xxx/CVE-2024-30202.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-30202"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2024/03/25/2"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2024/04/08/6"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://cgit.git.savannah.gnu.org/cgit/emacs/org-mode.git","events":[{"introduced":"0"},{"fixed":"003ddacf1c8d869b1858181c29ea21b731a8d8d9"}]},{"type":"GIT","repo":"https://git.savannah.gnu.org/git/emacs/org-mode.git/","events":[{"introduced":"0"},{"fixed":"5ff4d54c6fa527f478035467ffe0a82a81a92320"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"9.6.23"}]}}],"versions":["5.23a","6.26b","7.9.3e","beta_8.3","d","rel519","release_","release_4.12a","release_4.13","release_4.19a","release_4.19b","release_4.20","release_4.21","release_4.22","release_4.23","release_4.24","release_4.26","release_4.27","release_4.28","release_4.29","release_4.30","release_4.33","release_4.34","release_4.36","release_4.37","release_4.40","release_4.41","release_4.42","release_4.43","release_4.44","release_4.45","release_4.46","release_4.48","release_4.50","release_4.51","release_4.52","release_4.53","release_4.54","release_4.55","release_4.56","release_4.57","release_4.58","release_4.59","release_4.60","release_4.61","release_4.62","release_4.64","release_4.65","release_4.66","release_4.67","release_4.68","release_4.69","release_4.70","release_4.71","release_4.72","release_4.74","release_4.75","release_4.76","release_4.77","release_4.78","release_4.79","release_5.01","release_5.01b","release_5.02","release_5.03","release_5.03n","release_5.04","release_5.05","release_5.06","release_5.06b","release_5.06c","release_5.06d","release_5.06e","release_5.07","release_5.07a","release_5.10a","release_5.10b","release_5.11","release_5.11b","release_5.12","release_5.12b","release_5.12c","release_5.13","release_5.13a","release_5.13c","release_5.13d","release_5.13e","release_5.13g","release_5.13h","release_5.13i","release_5.14","release_5.15","release_5.15a","release_5.16","release_5.16a","release_5.16b","release_5.17","release_5.17a","release_5.18","release_5.18a","release_5.19","release_5.19a","release_5.20","release_5.21","release_5.22","release_5.22a","release_5.23a","release_6.01","release_6.01a","release_6.01b","release_6.01c","release_6.02","release_6.02a","release_6.02b","release_6.03","release_6.04","release_6.04a","release_6.04b","release_6.04c","release_6.05","release_6.05a","release_6.05b","release_6.06","release_6.06a","release_6.06b","release_6.07","release_6.07a","release_6.07b","release_6.08","release_6.08a","release_6.08c","release_6.09","release_6.09a","release_6.10","release_6.10a","release_6.10b","release_6.10c","release_6.11","release_6.11a","release_6.11b","release_6.11c","release_6.12","release_6.12a","release_6.12b","release_6.13","release_6.13a","release_6.14","release_6.15","release_6.15a","release_6.15b","release_6.15c","release_6.15d","release_6.15f","release_6.16","release_6.16a","release_6.16b","release_6.16c","release_6.17","release_6.17a","release_6.17b","release_6.17c","release_6.18","release_6.18a","release_6.18b","release_6.18c","release_6.19","release_6.19a","release_6.19b","release_6.19c","release_6.19d","release_6.19e","release_6.20","release_6.20a","release_6.20b","release_6.20c","release_6.20d","release_6.20e","release_6.20f","release_6.20g","release_6.20h","release_6.20i","release_6.21","release_6.21a","release_6.21b","release_6.22","release_6.22a","release_6.22b","release_6.23","release_6.23a","release_6.23b","release_6.24","release_6.24a","release_6.24b","release_6.24c","release_6.25","release_6.25a","release_6.25b","release_6.25c","release_6.25d","release_6.26","release_6.26a","release_6.26b","release_6.26c","release_6.26d","release_6.27","release_6.27a","release_6.28","release_6.28a","release_6.28b","release_6.28c","release_6.28d","release_6.29","release_6.29a","release_6.29b","release_6.29c","release_6.30","release_6.30a","release_6.30b","release_6.30c","release_6.30d","release_6.31","release_6.32","release_6.32a","release_6.32b","release_6.33","release_6.33a","release_6.33b","release_6.33c","release_6.33d","release_6.33e","release_6.33f","release_6.34","release_6.34a","release_6.34b","release_6.34c","release_6.35","release_6.35a","release_6.35b","release_6.35c","release_6.35d","release_6.35e","release_6.35f","release_6.35g","release_6.36","release_7.6","release_7.9","release_7.9.1","release_7.9.2","release_7.9.3","release_7.9.3a","release_7.9.3b","release_7.9.3c","release_7.9.3d","release_7.9.3f","release_7.9.4","release_8.0","release_8.0.1","release_8.1","release_8.1.2","release_8.2","release_8.3","release_8.3beta","release_9.0","release_9.1","release_9.2","release_9.3","release_9.4","release_9.4.1","release_9.4.2","release_9.4.3","release_9.4.4","release_9.4.5","release_9.4.6","release_9.5","release_9.6","release_9.6.1","release_9.6.10","release_9.6.11","release_9.6.12","release_9.6.13","release_9.6.14","release_9.6.15","release_9.6.16","release_9.6.17","release_9.6.18","release_9.6.19","release_9.6.2","release_9.6.20","release_9.6.21","release_9.6.22","release_9.6.3","release_9.6.4","release_9.6.5","release_9.6.6","release_9.6.7","release_9.6.8","release_9.6.9"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"29.3"}]}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-30202.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}