Known Vulnerabilities for products from Libreoffice
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Libreoffice".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-25636 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-02-24 | 2023-03-27 |
| CVE-2021-25634 | LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alterati... | 7.5 - HIGH | 2021-10-12 | 2021-10-18 |
| CVE-2021-25633 | LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alterati... | 7.5 - HIGH | 2021-10-11 | 2021-10-18 |
| CVE-2021-25631 | In the LibreOffice 7-1 series in versions prior to 7.1.2, and in the 7-0 series in versions prior to 7.0.5, the denylist can ... | 8.8 - HIGH | 2021-05-03 | 2021-05-12 |
| CVE-2020-12803 | ODF documents can contain forms to be filled out by the user. Similar to HTML forms, the contained form data can be submitted... | 6.5 - MEDIUM | 2020-06-08 | 2023-12-31 |
| CVE-2020-12802 | LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resou... | 5.3 - MEDIUM | 2020-06-08 | 2023-12-31 |
| CVE-2020-12801 | If LibreOffice has an encrypted document open and crashes, that document is auto-saved encrypted. On restart, LibreOffice off... | 5.3 - MEDIUM | 2020-05-18 | 2023-12-31 |
| CVE-2019-9855 | LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary py... | 9.8 - CRITICAL | 2019-09-06 | 2022-10-14 |
| CVE-2019-9854 | LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such... | 7.8 - HIGH | 2019-09-06 | 2023-11-07 |
| CVE-2019-9853 | LibreOffice documents can contain macros. The execution of those macros is controlled by the document security settings, typi... | 7.8 - HIGH | 2019-09-27 | 2023-11-07 |
| CVE-2019-9852 | LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such... | 7.8 - HIGH | 2019-08-15 | 2023-11-07 |
| CVE-2019-9851 | LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary py... | 9.8 - CRITICAL | 2019-08-15 | 2023-11-07 |
| CVE-2019-9850 | LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary py... | 9.8 - CRITICAL | 2019-08-15 | 2023-11-07 |
| CVE-2019-9849 | LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resou... | 4.3 - MEDIUM | 2019-07-17 | 2023-11-07 |
| CVE-2019-9848 | LibreOffice has a feature where documents can specify that pre-installed scripts can be executed on various document events s... | 9.8 - CRITICAL | 2019-07-17 | 2023-11-07 |
| CVE-2019-9847 | A vulnerability in LibreOffice hyperlink processing allows an attacker to construct documents containing hyperlinks pointing ... | 7.8 - HIGH | 2019-05-09 | 2021-09-08 |
| CVE-2018-18688 | The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to ... | 5.3 - MEDIUM | 2021-01-07 | 2021-01-14 |
| CVE-2018-16858 | It was found that libreoffice before versions 6.0.7 and 6.1.3 was vulnerable to a directory traversal attack which could be u... | 9.8 - CRITICAL | 2019-03-25 | 2019-08-06 |
| CVE-2018-14939 | The get_app_path function in desktop/unx/source/start.c in LibreOffice through 6.0.5 mishandles the realpath function in cert... | 9.8 - CRITICAL | 2018-08-05 | 2018-10-17 |
| CVE-2018-10583 | An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically proces... | 7.5 - HIGH | 2018-05-01 | 2023-11-07 |
Known software with vulnerabilities from Libreoffice
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Libreoffice | Libreoffice | - |