LibreOffice is vulnerable to directory traversal. Arbitrary python functions in arbitrary modules on the filesystem can be executed without warning.
CPE | Name | Operator | Version |
---|---|---|---|
libreoffice | eq | 5.3.6.1__19.el7 | |
libreoffice | eq | 5.3.6.1__19.el7 |
packetstormsecurity.com/files/152560/LibreOffice-Macro-Code-Execution.html
www.rapid7.com/db/modules/exploit/multi/fileformat/libreoffice_macro_exec
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index
access.redhat.com/errata/RHSA-2019:2130
access.redhat.com/security/updates/classification/#low
bugzilla.redhat.com/show_bug.cgi?id=1066844
bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16858
www.exploit-db.com/exploits/46727/
www.libreoffice.org/about-us/security/advisories/cve-2018-16858/