Filter
-Infinity
0

CVE-2024-40896 Analysis: libxml2 XXE due to type confusion

debian/libreofficeSignatures in "repair mode" should not be trusted

7.8
EPSS
0.05%
First published (updated )

redhat/LibreOfficeLink targets allow arbitrary script execution

8.8
EPSS
0.07%
First published (updated )

redhat/LibreOfficeImproper input validation enabling arbitrary Gstreamer pipeline injection

8.8
EPSS
0.07%
First published (updated )

LibreOffice DrawRemote documents loaded without prompt via IFrame

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

LibreOffice DrawArray Index UnderFlow in Calc Formula Parsing

First published (updated )

redhat/libreofficeArbitrary file write

First published (updated )

LibreOffice DrawMacro URL arbitrary script execution

First published (updated )

LibreOffice DrawWeak Master Keys

8.8
First published (updated )

LibreOffice DrawExecution of Untrusted Macros Due to Improper Certificate Validation

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

LibreOffice DrawExecution of Untrusted Macros Due to Improper Certificate Validation

7.5
First published (updated )

LibreOffice DrawIncorrect trust validation of signature with ambiguous KeyInfo children

7.5
First published (updated )

LibreOfficeTimestamp Manipulation with Signature Wrapping

7.5
First published (updated )

LibreOfficeContent Manipulation with Double Certificate Attack

7.5
First published (updated )

OWASP ZAPdenylist of executable filename extensions possible to bypass under windows

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

iSkysoft PDFelement 6The Portable Document Format (PDF) specification does not provide any information regarding the conc…

First published (updated )

LibreOffice DrawXForms submissions could overwrite local files

First published (updated )

SUSE Linuxremote graphics contained in docx format retrieved in 'stealth mode'

First published (updated )

LibreOffice DrawCrash-recovered MSOffice encrypted documents defaulted to not to using encryption on next save

First published (updated )

DebianApache OpenOffice: Loading internal / external resources without warning

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/LibreOfficeInsufficient URL decoding flaw in categorizing macro location

7.8
First published (updated )

UbuntuUnsafe URL assembly flaw in allowed script location check

7.8
First published (updated )

LibreOffice DrawWindows 8.3 path equivalence handling flaw allows LibreLogo script execution

First published (updated )

UbuntuInsufficient URL encoding flaw in allowed script location check

7.8
First published (updated )

UbuntuLibreLogo global-event script execution

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

UbuntuInsufficient url validation allowing LibreLogo script execution

First published (updated )

UbuntuLast updated 24 July 2024

First published (updated )

UbuntuCode Injection

First published (updated )

LibreOffice DrawExecutable hyperlink targets executed unconditionally on activation

7.8
First published (updated )

ubuntu/libreofficePath Traversal

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203