Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libreoffice libreoffice vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2019-9853
LibreOffice documents can contain macros. The execution of those macros is controlled by the document security settings, typically execution of macros are blocked by default. A URL decoding flaw existed in how the urls to the macros within the document were processed and categori...
Libreoffice Libreoffice
6.8
CVSSv2
CVE-2019-9854
LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under the share/Scripts/python, user/Scripts/python sub-directories of th...
Libreoffice Libreoffice
Redhat Enterprise Linux 7.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.0
Canonical Ubuntu Linux 19.04
Fedoraproject Fedora 29
Redhat Enterprise Linux 8.0
Opensuse Leap 15.1
6.8
CVSSv2
CVE-2019-9852
LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under the share/Scripts/python, user/Scripts/python sub-directories of th...
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.0
Canonical Ubuntu Linux 19.04
Fedoraproject Fedora 29
Opensuse Leap 15.1
Canonical Ubuntu Linux 16.04
Libreoffice Libreoffice
6.8
CVSSv2
CVE-2019-9847
A vulnerability in LibreOffice hyperlink processing allows an malicious user to construct documents containing hyperlinks pointing to the location of an executable on the target users file system. If the hyperlink is activated by the victim the executable target is unconditionall...
Libreoffice Libreoffice
1 Github repository
6.8
CVSSv2
CVE-2018-10119
sot/source/sdstor/stgstrms.cxx in LibreOffice prior to 5.4.5.1 and 6.x prior to 6.0.1.1 uses an incorrect integer data type in the StgSmallStrm class, which allows remote malicious users to cause a denial of service (use-after-free with write access) or possibly have unspecified ...
Libreoffice Libreoffice
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
6.8
CVSSv2
CVE-2018-10120
The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice prior to 5.4.6.1 and 6.x prior to 6.0.2.1 does not validate a customizations index, which allows remote malicious users to cause a denial of service (heap-based buffer overflow with write access...
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Libreoffice Libreoffice
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
6.8
CVSSv2
CVE-2017-12608
A vulnerability in Apache OpenOffice Writer DOC file parser prior to 4.1.4, and specifically in ImportOldFormatStyles, allows malicious users to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary cod...
Apache Openoffice
Debian Debian Linux 8.0
Debian Debian Linux 7.0
6.8
CVSSv2
CVE-2017-12607
A vulnerability in OpenOffice's PPT file parser prior to 4.1.4, and specifically in PPTStyleSheet, allows malicious users to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution.
Apache Openoffice
Debian Debian Linux 7.0
Debian Debian Linux 8.0
6.8
CVSSv2
CVE-2016-1513
The Impress tool in Apache OpenOffice 4.1.2 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read or write) or execute arbitrary code via crafted MetaActions in an (1) ODP or (2) OTP file.
Apache Openoffice
6.8
CVSSv2
CVE-2012-2334
Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice prior to 3.5.3, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via the length of an Escher ...
Apache Openoffice.org 3.3
Apache Openoffice.org 3.4
Libreoffice Libreoffice 3.3.1
Libreoffice Libreoffice 3.3.4
Libreoffice Libreoffice 3.4.5
Libreoffice Libreoffice 3.4.1
Libreoffice Libreoffice 3.4.2
Libreoffice Libreoffice 3.4.0
Libreoffice Libreoffice 3.3.3
Libreoffice Libreoffice 3.3.0
Libreoffice Libreoffice 3.3.2
Libreoffice Libreoffice 3.5
Libreoffice Libreoffice
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »