Multiple vulnerabilities in LibreOffice

Popis

Multiple vulnerabilities were found in LibreOffice. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Improper Access Control vulnerability in IFrame can be exploited to bypass security restrictions.
2. Improper Validation of Array Index vulnerability in Calc Formula Parsing can be exploited remotely to execute arbitrary code.

Oficiální doporučení

• Array Index UnderFlow in Calc Formula Parsing

• Remote documents loaded without prompt via IFrame

Vykořisťování

Public exploits exist for this vulnerability.

Související produkty

• LibreOffice

seznam CVE

• CVE-2023-2255
  high
• CVE-2023-0950
  critical

Zobrazit více

Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com