7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.1 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
34.2%
It was discovered that LibreOffice did not properly validate the number of
parameters passed to the formula interpreter, leading to an array index
underflow attack. If a user were tricked into opening a specially crafted
spreadsheet file, an attacker could possibly use this issue to execute
arbitrary code. (CVE-2023-0950)
Amel Bouziane-Leblond discovered that LibreOffice did not prompt the user
before loading the host document inside an IFrame. If a user were tricked
into opening a specially crafted input file, an attacker could possibly use
this issue to cause information disclosure or execute arbitrary code.
(CVE-2023-2255)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 22.04 | noarch | libreoffice | < 1:7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
Ubuntu | 22.04 | noarch | fonts-opensymbol | < 2:102.12+LibO7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
Ubuntu | 22.04 | noarch | gir1.2-lokdocview-0.1 | < 1:7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
Ubuntu | 22.04 | noarch | libjuh-java | < 1:7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
Ubuntu | 22.04 | noarch | libjurt-java | < 1:7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
Ubuntu | 22.04 | noarch | liblibreoffice-java | < 1:7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
Ubuntu | 22.04 | noarch | liblibreofficekitgtk | < 1:7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
Ubuntu | 22.04 | noarch | liblibreofficekitgtk-dbgsym | < 1:7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
Ubuntu | 22.04 | noarch | libofficebean-java | < 1:7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
Ubuntu | 22.04 | noarch | libofficebean-java-dbgsym | < 1:7.3.7-0ubuntu0.22.04.3 | UNKNOWN |
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.1 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
34.2%