CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-6861

A flaw was found in GNU Emacs. This vulnerability, a memory corruption issue, occurs when Emacs processes specially crafted SVG (Scalable Vector Graphics) CSS (Cascading Style Sheets) data. A local user could exploit this by convincing a victim to open a malicious SVG file, which may lead to a denial of service (DoS) or potentially information disclosure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.1%

CVSS Severity

CVSS v3 Score 6.1

References

https://access.redhat.com/security/cve/CVE-2026-6861
https://bugzilla.redhat.com/show_bug.cgi?id=2459992

Products affected by CVE-2026-6861

Gnu » Emacs » Version: 28.1

cpe:2.3:a:gnu:emacs:28.1
Gnu » Emacs » Version: 28.2

cpe:2.3:a:gnu:emacs:28.2
Gnu » Emacs » Version: 29.1

cpe:2.3:a:gnu:emacs:29.1
Gnu » Emacs » Version: 29.2

cpe:2.3:a:gnu:emacs:29.2
Gnu » Emacs » Version: 29.3

cpe:2.3:a:gnu:emacs:29.3
Gnu » Emacs » Version: 29.4

cpe:2.3:a:gnu:emacs:29.4
Gnu » Emacs » Version: 30.1

cpe:2.3:a:gnu:emacs:30.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-6861

Products

Pricing

Contact Us