Known Vulnerabilities for products from Libreoffice
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Libreoffice".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-6186 json | 8.8 - HIGH | 2023-12-11 | 2023-12-31 | |
| CVE-2023-6185 json | 8.8 - HIGH | 2023-12-11 | 2023-12-31 | |
| CVE-2023-2255 json | Improper access control in editor components of The Document Foundation LibreOffice allowed an attacker to craft a document t... | 5.3 - MEDIUM | 2023-05-25 | 2023-11-26 |
| CVE-2023-1183 json | A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT c... | 5.5 - MEDIUM | 2023-07-10 | 2024-01-03 |
| CVE-2023-0950 json | Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows a... | 7.8 - HIGH | 2023-05-25 | 2023-11-26 |
| CVE-2022-26307 json | LibreOffice supports the storage of passwords for web connections in the user’s configuration database. The stored password... | 8.8 - HIGH | 2022-07-25 | 2023-07-11 |
| CVE-2022-26306 json | LibreOffice supports the storage of passwords for web connections in the user’s configuration database. The stored password... | 7.5 - HIGH | 2022-07-25 | 2023-07-11 |
| CVE-2022-26305 json | An Improper Certificate Validation vulnerability in LibreOffice existed where determining if a macro was signed by a trusted ... | 7.5 - HIGH | 2022-07-25 | 2023-03-26 |
| CVE-2022-3140 json | LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional... | 6.3 - MEDIUM | 2022-10-11 | 2023-03-27 |
| CVE-2021-25636 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-02-24 | 2023-03-27 |
| CVE-2021-25634 json | LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alterati... | 7.5 - HIGH | 2021-10-12 | 2021-10-18 |
| CVE-2021-25633 json | LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alterati... | 7.5 - HIGH | 2021-10-11 | 2021-10-18 |
| CVE-2021-25631 json | In the LibreOffice 7-1 series in versions prior to 7.1.2, and in the 7-0 series in versions prior to 7.0.5, the denylist can ... | 8.8 - HIGH | 2021-05-03 | 2021-05-12 |
| CVE-2020-12803 json | ODF documents can contain forms to be filled out by the user. Similar to HTML forms, the contained form data can be submitted... | 6.5 - MEDIUM | 2020-06-08 | 2023-12-31 |
| CVE-2020-12802 json | LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resou... | 5.3 - MEDIUM | 2020-06-08 | 2023-12-31 |
| CVE-2020-12801 json | If LibreOffice has an encrypted document open and crashes, that document is auto-saved encrypted. On restart, LibreOffice off... | 5.3 - MEDIUM | 2020-05-18 | 2023-12-31 |
| CVE-2019-9855 json | LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary py... | 9.8 - CRITICAL | 2019-09-06 | 2022-10-14 |
| CVE-2019-9854 json | LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such... | 7.8 - HIGH | 2019-09-06 | 2023-11-07 |
| CVE-2019-9853 json | LibreOffice documents can contain macros. The execution of those macros is controlled by the document security settings, typi... | 7.8 - HIGH | 2019-09-27 | 2023-11-07 |
| CVE-2019-9852 json | LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such... | 7.8 - HIGH | 2019-08-15 | 2023-11-07 |
Known software with vulnerabilities from Libreoffice
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Libreoffice | Libreoffice | - |