Lucene search

CVE-2018-6871

🗓️ 09 Feb 2018 06:00:29Reported by [email protected]Type

LibreOffice allows remote file read via =WEBSERVICE in versions before 5.4.5 and 6.x before 6.0.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 78
Prion	Design/Logic Flaw	9 Feb 201806:29	–	prion
Tenable Nessus	SUSE SLED12 Security Update : libreoffice (SUSE-SU-2018:0428-1)	13 Feb 201800:00	–	nessus
Tenable Nessus	SUSE SLED12 Security Update : libreoffice (SUSE-SU-2018:0443-1)	15 Feb 201800:00	–	nessus
Tenable Nessus	RHEL 7 : libreoffice (RHSA-2018:0418)	7 Mar 201800:00	–	nessus
Tenable Nessus	Oracle Linux 6 : libreoffice (ELSA-2018-0517)	15 Mar 201800:00	–	nessus
Tenable Nessus	Ubuntu 14.04 LTS / 16.04 LTS : LibreOffice vulnerability (USN-3579-1)	22 Feb 201800:00	–	nessus
Tenable Nessus	openSUSE Security Update : libreoffice (openSUSE-2018-162)	15 Feb 201800:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : libreoffice on SL6.x i386/x86_64 (20180313)	15 Mar 201800:00	–	nessus
Tenable Nessus	GLSA-201802-06 : LibreOffice: Information disclosure	20 Feb 201800:00	–	nessus
Tenable Nessus	CentOS 6 : libreoffice (CESA-2018:0517)	15 Mar 201800:00	–	nessus

Nvd

Node

libreoffice libreofficeRange<5.4.5

libreoffice libreofficeMatch6.0.0

libreoffice libreofficeMatch6.0.0alpha1

libreoffice libreofficeMatch6.0.0beta1

libreoffice libreofficeMatch6.0.0beta2

Node

debian debian_linuxMatch9.0

Node

canonical ubuntu_linuxMatch14.04lts

canonical ubuntu_linuxMatch16.04lts

canonical ubuntu_linuxMatch17.10

Node

redhat enterprise_linux_desktopMatch6.0

redhat enterprise_linux_desktopMatch7.0

redhat enterprise_linux_serverMatch6.0

redhat enterprise_linux_serverMatch7.0

redhat enterprise_linux_server_ausMatch7.4

redhat enterprise_linux_server_ausMatch7.6

redhat enterprise_linux_server_eusMatch7.4

redhat enterprise_linux_server_eusMatch7.5

redhat enterprise_linux_server_eusMatch7.6

redhat enterprise_linux_server_tusMatch7.4

redhat enterprise_linux_server_tusMatch7.6

redhat enterprise_linux_workstationMatch6.0

redhat enterprise_linux_workstationMatch7.0

Source	Link
cgit	www.cgit.freedesktop.org/libreoffice/core/commit/
exploit-db	www.exploit-db.com/exploits/44022/
debian	www.debian.org/security/2018/dsa-4111
access	www.access.redhat.com/errata/RHSA-2018:0418
access	www.access.redhat.com/errata/RHSA-2018:0517
github	www.github.com/jollheef/libreoffice-remote-arbitrary-file-disclosure
usn	www.usn.ubuntu.com/3579-1/
libreoffice	www.libreoffice.org/about-us/security/advisories/cve-2018-1055/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Feb 2018 06:29Current

9.3High risk

Vulners AI Score9.3

CVSS25

CVSS39.8

EPSS0.50876