Lucene search
Document Fdn.CVELIST:CVE-2019-9848HistoryJul 16, 2019 - 12:00 a.m.
CVE-2019-9848
2019-07-1600:00:00
Document Fdn.
raw.githubusercontent.com
2
LibreOffice has a feature where documents can specify that pre-installed scripts can be executed on various document events such as mouse-over, etc. LibreOffice is typically also bundled with LibreLogo, a programmable turtle vector graphics script, which can be manipulated into executing arbitrary python commands. By using the document event feature to trigger LibreLogo to execute python contained within a document a malicious document could be constructed which would execute arbitrary python commands silently without warning. In the fixed versions, LibreLogo cannot be called from a document event handler. This issue affects: Document Foundation LibreOffice versions prior to 6.2.5.
Related
redhatcve
redhatcve
osv
osv
checkpoint_advisories
checkpoint_advisories
LibreOffice Remote Code Execution (CVE-2019-9848)
2020-02-26 00:00:00
attackerkb
attackerkb
CVE-2019-9848
2019-07-17 00:00:00
alpinelinux
alpinelinux
veracode
veracode
Arbitrary Code Execution
2020-04-01 00:38:30
cve
cve
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2019-07-17 12:15:00
Input validation
2019-08-15 22:15:00
Design/Logic Flaw
2019-08-15 22:15:00
debiancve
debiancve
gentoo
gentoo
LibreOffice: Multiple vulnerabilities
2019-08-15 00:00:00
openvas
openvas
LibreOffice Multiple Vulnerabilities (Jul 2019) - Windows
2019-07-19 00:00:00
LibreOffice Multiple Vulnerabilities (Jul 2019) - Mac OS X
2019-07-19 00:00:00
Ubuntu: Security Advisory (USN-4063-1)
2019-07-18 00:00:00
archlinux
archlinux
[ASA-201908-9] libreoffice-still: multiple issues
2019-08-16 00:00:00
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : LibreOffice vulnerabilities (USN-4063-1)
2019-07-19 00:00:00
GLSA-201908-13 : LibreOffice: Multiple vulnerabilities
2019-08-20 00:00:00
Fedora 30 : 1:libreoffice (2019-5561d20558)
2019-07-19 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: libreoffice-6.2.5.2-1.fc30
2019-07-19 01:11:31
[SECURITY] Fedora 29 Update: libreoffice-6.1.6.3-3.fc29
2019-08-25 03:03:59
[SECURITY] Fedora 29 Update: libreoffice-6.1.6.3-4.fc29
2019-09-16 02:21:27
cvelist
cvelist
CVE-2019-9851 LibreLogo global-event script execution
2019-08-15 00:00:00
debian
debian
[SECURITY] [DSA 4483-1] libreoffice security update
2019-07-16 21:14:39
[SECURITY] [DSA 4501-1] libreoffice security update
2019-08-15 20:05:33
[SECURITY] [DLA 1947-1] libreoffice security update
2019-10-06 11:31:56
kaspersky
kaspersky
KLA11519 Multiple vulnerabilities in LibreOffice
2019-07-16 00:00:00
thn
thn
Just Opening A Document in LibreOffice Can Hack Your Computer (Unpatched)
2019-07-26 14:22:00
Patches for 2 Severe LibreOffice Flaws Bypassed — Update to Patch Again
2019-08-16 09:19:00
ubuntu
ubuntu
LibreOffice vulnerabilities
2019-07-17 00:00:00
packetstorm
packetstorm
LibreOffice Macro Python Code Execution
2019-08-20 00:00:00
zdt
zdt
LibreOffice < 6.2.6 Macro - Python Code Execution Exploit
2019-08-21 00:00:00
exploitpack
exploitpack
LibreOffice 6.2.6 Macro - Python Code Execution (Metasploit)
2019-08-21 00:00:00
metasploit
metasploit
LibreOffice Macro Python Code Execution
2019-07-30 21:07:20
exploitdb
exploitdb
LibreOffice < 6.2.6 Macro - Python Code Execution (Metasploit)
2019-08-21 00:00:00
suse
suse
Security update for libreoffice (important)
2019-09-03 00:00:00
Security update for libreoffice (moderate)
2019-09-25 00:00:00
oraclelinux
oraclelinux
libreoffice security and bug fix update
2020-04-06 00:00:00
centos
centos
autocorr, libreoffice, libreofficekit security update
2020-04-08 18:36:06
redhat
redhat
(RHSA-2020:1151) Moderate: libreoffice security and bug fix update
2020-03-31 09:25:19
mageia
mageia
Updated libreoffice packages fix security vulnerabilities
2019-11-30 16:06:06