Insufficient macro permission validation of The Document Foundation LibreOffice allows an attacker to execute built-in macros without warning.
In affected versions LibreOffice supports hyperlinks with macro or similar built-in command targets that can be executed when activated without warning the user.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 11.0 | |
debian_linux | eq | 12.0 | |
fedora | eq | 38 | |
libreoffice | ge | 7.5.0 | |
libreoffice | lt | 7.5.9 | |
libreoffice | ge | 7.6.0 | |
libreoffice | lt | 7.6.4 |