VYPR
Unrated severityNVD Advisory· Published Feb 20, 2023· Updated Mar 18, 2025

CVE-2022-48337

CVE-2022-48337

Description

GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file, because lib-src/etags.c uses the system C library function in its implementation of the etags program. For example, a victim may use the "etags -u *" command (suggested in the etags documentation) in a situation where the current working directory has contents that depend on untrusted input.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

35

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.