Multiple vulnerabilities in LibreOffice

Описание

Multiple vulnerabilities were found in LibreOffice. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Improper Access Control vulnerability in IFrame can be exploited to bypass security restrictions.
2. Improper Validation of Array Index vulnerability in Calc Formula Parsing can be exploited remotely to execute arbitrary code.

Первичный источник обнаружения

• Array Index UnderFlow in Calc Formula Parsing
  Remote documents loaded without prompt via IFrame
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• LibreOffice

Список CVE

• CVE-2023-2255
  high
• CVE-2023-0950
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com