Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libreoffice libreoffice - vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2019-9847
A vulnerability in LibreOffice hyperlink processing allows an malicious user to construct documents containing hyperlinks pointing to the location of an executable on the target users file system. If the hyperlink is activated by the victim the executable target is unconditionall...
Libreoffice Libreoffice
1 Github repository
7.5
CVSSv2
CVE-2018-14939
The get_app_path function in desktop/unx/source/start.c in LibreOffice up to and including 6.0.5 mishandles the realpath function in certain environments such as FreeBSD libc, which might allow malicious users to cause a denial of service (buffer overflow and application crash) o...
Libreoffice Libreoffice
9.3
CVSSv2
CVE-2021-25631
In the LibreOffice 7-1 series in versions before 7.1.2, and in the 7-0 series in versions before 7.0.5, the denylist can be circumvented by manipulating the link so it doesn't match the denylist but results in ShellExecute attempting to launch an executable type.
Libreoffice Libreoffice
6.8
CVSSv2
CVE-2019-9853
LibreOffice documents can contain macros. The execution of those macros is controlled by the document security settings, typically execution of macros are blocked by default. A URL decoding flaw existed in how the urls to the macros within the document were processed and categori...
Libreoffice Libreoffice
7.5
CVSSv2
CVE-2017-8358
LibreOffice prior to 2017-03-17 has an out-of-bounds write caused by a heap-based buffer overflow related to the ReadJPEG function in vcl/source/filter/jpeg/jpegc.cxx.
Libreoffice Libreoffice
NA
CVE-2023-1183
A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the attacker.
Libreoffice Libreoffice 7.5.0
Libreoffice Libreoffice
Fedoraproject Fedora 38
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
9.3
CVSSv2
CVE-2014-3524
Apache OpenOffice prior to 4.1.1 allows remote malicious users to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet.
Apache Openoffice
Libreoffice Libreoffice
3 Github repositories
5
CVSSv2
CVE-2017-14226
WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote malicious users to cause a denial of service (heap-based buffer over-read in the WPXTableList class in WPXTable.cpp). This vulnerability can be trigg...
Libreoffice Libreoffice
Libwpd Libwpd 0.10.1
5
CVSSv2
CVE-2020-12801
If LibreOffice has an encrypted document open and crashes, that document is auto-saved encrypted. On restart, LibreOffice offers to restore the document and prompts for the password to decrypt it. If the recovery is successful, and if the file format of the recovered document was...
Libreoffice Libreoffice
Opensuse Leap 15.1
5
CVSSv2
CVE-2021-25636
LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid. An Improper Certificate Validation vulnerability in LibreOffice allowed...
Libreoffice Libreoffice
Fedoraproject Fedora 34
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »