LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function.

References

access.redhat.com/errata/RHSA-2018:0418

access.redhat.com/errata/RHSA-2018:0517

cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-5-4-5&id=a916fc0c0e0e8b10cb4158fa0fa173fe205d434a

github.com/jollheef/libreoffice-remote-arbitrary-file-disclosure

usn.ubuntu.com/3579-1/

www.debian.org/security/2018/dsa-4111

www.exploit-db.com/exploits/44022/

www.libreoffice.org/about-us/security/advisories/cve-2018-1055/

openvas 15

freebsd 1

nessus 23

kaspersky 1

cve 2

nvd 2

redhatcve 1

fedora 4

oraclelinux 2

gentoo 1

ubuntu 3

prion 1

suse 3

zdt 1

debian 2

osv 2

redhat 2

packetstorm 1

ubuntucve 1

cvelist 2

centos 2

exploitpack 1

veracode 1

debiancve 1

checkpoint_advisories 1

exploitdb 1

mageia 1

openvas

Fedora Update for libreoffice FEDORA-2018-3eb4d8e4c4

2018-02-15 00:00:00

LibreOffice 'WEBSERVICE formula' Remote File Disclosure Vulnerability - Windows

2018-02-12 00:00:00

LibreOffice 'WEBSERVICE formula' Remote File Disclosure Vulnerability - Mac OS X

2018-02-12 00:00:00

freebsd

LibreOffice -- Remote arbitrary file disclosure vulnerability via WEBSERVICE formula

2018-02-09 00:00:00

nessus

FreeBSD : LibreOffice -- Remote arbitrary file disclosure vulnerability via WEBSERVICE formula (289269f1-0def-11e8-99b0-d017c2987f9a)

2018-02-26 00:00:00

RHEL 6 : libreoffice (RHSA-2018:0517)

2018-03-14 00:00:00

Fedora 27 : 1:libreoffice (2018-3eb4d8e4c4)

2018-02-15 00:00:00

kaspersky

KLA11198 RLF vulnerability in LibreOffice

2018-02-09 00:00:00

cve

CVE-2018-1055

2018-02-09 14:29:00

CVE-2018-6871

2018-02-09 06:29:00

nvd

CVE-2018-1055

2018-02-09 14:29:00

CVE-2018-6871

2018-02-09 06:29:00

redhatcve

CVE-2018-6871

2018-02-14 05:21:14

fedora

[SECURITY] Fedora 27 Update: libreoffice-5.4.5.1-1.fc27

2018-02-14 17:34:50

[SECURITY] Fedora 26 Update: libreoffice-5.3.7.2-8.fc26

2018-02-20 16:41:17

[SECURITY] Fedora 27 Update: libreoffice-5.4.6.2-6.fc27

2018-05-13 20:18:24

oraclelinux

libreoffice security update

2018-03-07 00:00:00

libreoffice security update

2018-03-14 00:00:00

gentoo

LibreOffice: Information disclosure

2018-02-20 00:00:00

ubuntu

LibreOffice regression

2018-03-07 00:00:00

LibreOffice vulnerability

2018-02-21 00:00:00

LibreOffice regression

2018-02-28 00:00:00

prion

Design/Logic Flaw

2018-02-09 06:29:00

suse

Security update for libreoffice (important)

2018-02-15 03:07:46

Security update for libreoffice (important)

2018-02-12 21:08:11

Security update for libreoffice (important)

2018-02-14 18:10:20

zdt

LibreOffice < 6.0.1 - =WEBSERVICE Remote Arbitrary File Disclosure Vulnerability

2018-02-12 00:00:00

debian

[SECURITY] [DSA 4111-1] libreoffice security update

2018-02-11 14:26:50

[SECURITY] [DSA 4111-2] libreoffice security update

2018-02-12 21:10:52

osv

libreoffice - security update

2018-02-11 00:00:00

libreoffice - security update

2018-02-12 00:00:00

redhat

(RHSA-2018:0517) Moderate: libreoffice security update

2018-03-13 17:31:38

(RHSA-2018:0418) Moderate: libreoffice security update

2018-03-06 18:37:09

packetstorm

LibreOffice Arbitrary File Disclosure

2018-02-08 00:00:00

ubuntucve

CVE-2018-6871

2018-02-09 00:00:00

cvelist

CVE-2018-6871

2018-02-09 06:00:00

CVE-2018-1055

2018-02-09 14:00:00

centos

autocorr, libreoffice security update

2018-03-14 14:47:45

autocorr, libreoffice, libreofficekit security update

2018-03-10 01:07:51

exploitpack

LibreOffice 6.0.1 - WEBSERVICE Remote Arbitrary File Disclosure

2018-02-10 00:00:00

veracode

Arbitrary File Read

2019-01-15 09:21:05

debiancve

CVE-2018-6871

2018-02-09 06:29:00

checkpoint_advisories

LibreOffice WEBSERVICE Information Disclosure (CVE-2018-6871)

2019-02-21 00:00:00

exploitdb

LibreOffice < 6.0.1 - '=WEBSERVICE' Remote Arbitrary File Disclosure

2018-02-10 00:00:00

mageia

Updated libreoffice packages fix security vulnerabilities

2018-06-06 00:42:18

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.2 High

AI Score

Confidence

Low

0.593 Medium

EPSS

Percentile

97.8%

JSON

Related for OSV:CVE-2018-6871