KLA49330
Multiple vulnerabilities in LibreOffice

Обновлено: 29/09/2023
Дата обнаружения
24/05/2023
Уровень угрозы
Warning
Описание

Multiple vulnerabilities were found in LibreOffice. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Improper Access Control vulnerability in IFrame can be exploited to bypass security restrictions.
  2. Improper Validation of Array Index vulnerability in Calc Formula Parsing can be exploited remotely to execute arbitrary code.
Пораженные продукты

LibreOffice earlier than 7.4.7
LibreOffice 7.5.x earlier than 7.5.3

Решение

Update to the latest version
Download LibreOffice

Первичный источник обнаружения
Array Index UnderFlow in Calc Formula Parsing
Remote documents loaded without prompt via IFrame
Оказываемое влияние
?
ACE 
[?]

SB 
[?]

PE 
[?]
Связанные продукты
LibreOffice
CVE-IDS
CVE-2023-22555.0Warning
CVE-2023-09505.0Warning
Узнай статистику распространения уязвимостей в твоем регионе