An incomplete-cleanup vulnerability in the Office rendering engine of Gotenberg up to and including 6.2.1 allows an malicious user to overwrite LibreOffice configuration files and execute arbitrary code via macros.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
thecodingmachine gotenberg |