Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-3883-1
HistoryFeb 06, 2019 - 12:00 a.m.

LibreOffice vulnerabilities

2019-02-0600:00:00
ubuntu.com
122

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

0.963 High

EPSS

Percentile

99.6%

JSON

Releases

  • Ubuntu 16.04 ESM
  • Ubuntu 14.04 ESM

Packages

  • libreoffice - Office productivity suite

Details

It was discovered that LibreOffice incorrectly handled certain document
files. If a user were tricked into opening a specially crafted document, a
remote attacker could cause LibreOffice to crash, and possibly execute
arbitrary code. (CVE-2018-10119, CVE-2018-10120, CVE-2018-11790)

It was discovered that LibreOffice incorrectly handled embedded SMB
connections in document files. If a user were tricked in to opening a
specially crafted document, a remote attacker could possibly exploit this
to obtain sensitive information. (CVE-2018-10583)

Alex Inführ discovered that LibreOffice incorrectly handled embedded
scripts in document files. If a user were tricked into opening a specially
crafted document, a remote attacker could possibly execute arbitrary code.
(CVE-2018-16858)

OSVersionArchitecturePackageVersionFilename
Ubuntu16.04noarchlibreoffice-core< 1:5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Ubuntu16.04noarchfonts-opensymbol< 2:102.7+LibO5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Ubuntu16.04noarchgir1.2-lokdocview-0.1< 1:5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Ubuntu16.04noarchgir1.2-lokdocview-0.1-dbgsym< 1:5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Ubuntu16.04noarchlibreoffice< 1:5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Ubuntu16.04noarchlibreoffice-avmedia-backend-gstreamer< 1:5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Ubuntu16.04noarchlibreoffice-avmedia-backend-gstreamer-dbgsym< 1:5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Ubuntu16.04noarchlibreoffice-base< 1:5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Ubuntu16.04noarchlibreoffice-base-core< 1:5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Ubuntu16.04noarchlibreoffice-base-core-dbgsym< 1:5.1.6~rc2-0ubuntu1~xenial6UNKNOWN
Rows per page:
1-10 of 1371

Related

nessus 48
openvas 35
redhat 2
mageia 3
osv 9
debian 6
suse 5
fedora 4
nvd 6
debiancve 6
cve 6
kaspersky 5
ubuntucve 6
redhatcve 5
prion 6
zdt 3
cvelist 6
packetstorm 4
metasploit 2
thn 2
malwarebytes 1
centos 1
oraclelinux 1
attackerkb 1
checkpoint_advisories 1
veracode 1
exploitdb 3
alpinelinux 1
exploitpack 1
nessus
nessus
Ubuntu 14.04 LTS / 16.04 LTS : LibreOffice vulnerabilities (USN-3883-1)
2019-02-07 00:00:00
RHEL 7 : libreoffice (RHSA-2018:3054)
2018-10-31 00:00:00
Scientific Linux Security Update : libreoffice on SL7.x x86_64 (20181030)
2018-11-27 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3883-1)
2019-02-07 00:00:00
Debian: Security Advisory (DSA-4178-1)
2018-04-19 00:00:00
openSUSE: Security Advisory for libreoffice (openSUSE-SU-2018:1311-1)
2018-05-17 00:00:00
redhat
redhat
(RHSA-2018:3054) Moderate: libreoffice security and bug fix update
2018-10-30 04:13:24
(RHSA-2019:2130) Low: libreoffice security and bug fix update
2019-08-06 08:04:23
mageia
mageia
Updated libreoffice packages fix security vulnerabilities
2018-06-06 00:42:18
Updated libreoffice packages fix security vulnerability
2019-02-22 04:08:50
Updated libreoffice packages fix security vulnerabilities
2019-11-30 16:06:06
osv
osv
libreoffice - security update
2018-04-19 00:00:00
libreoffice - security update
2018-04-20 00:00:00
CVE-2018-10119
2018-04-16 09:58:10
debian
debian
[SECURITY] [DLA 1356-1] libreoffice security update
2018-04-19 21:07:49
[SECURITY] [DSA 4178-1] libreoffice security update
2018-04-20 20:21:28
[SECURITY] [DSA 4381-1] libreoffice security update
2019-02-02 18:24:32
suse
suse
Security update for libreoffice (moderate)
2018-05-17 00:07:31
Security update for libreoffice (moderate)
2018-08-28 03:10:18
Security update for libreoffice (moderate)
2018-08-28 03:08:00
fedora
fedora
[SECURITY] Fedora 28 Update: libreoffice-6.0.7.3-1.fc28
2019-02-08 02:31:05
[SECURITY] Fedora 26 Update: libreoffice-5.3.7.2-9.fc26
2018-04-29 21:23:31
[SECURITY] Fedora 28 Update: libreoffice-6.0.3.2-9.fc28
2018-05-11 21:15:43
nvd
nvd
CVE-2018-10119
2018-04-16 09:58:10
CVE-2018-11790
2019-01-31 16:29:00
CVE-2018-10120
2018-04-16 09:58:10
debiancve
debiancve
CVE-2018-10119
2018-04-16 09:58:10
CVE-2018-11790
2019-01-31 16:29:00
CVE-2018-10120
2018-04-16 09:58:10
cve
cve
CVE-2018-10120
2018-04-16 09:58:10
CVE-2018-11790
2019-01-31 16:29:00
CVE-2018-10119
2018-04-16 09:58:10
kaspersky
kaspersky
KLA12401 DoS vulnerability in OpenOffice
2018-11-18 00:00:00
KLA11254 DoS vulnerability in LibreOffice
2018-04-16 00:00:00
KLA11596 SB vulnerability in LibreOffice
2018-04-18 00:00:00
ubuntucve
ubuntucve
CVE-2018-11790
2018-12-31 00:00:00
CVE-2018-10119
2018-04-16 00:00:00
CVE-2018-10120
2018-04-16 00:00:00
redhatcve
redhatcve
CVE-2018-10119
2018-04-20 05:18:48
CVE-2018-10583
2018-05-04 14:18:49
CVE-2018-10120
2018-04-20 05:48:40
prion
prion
Heap overflow
2018-04-16 09:58:00
Format string
2018-04-16 09:58:00
Buffer overflow
2019-01-31 16:29:00
zdt
zdt
LibreOffice / Open Office - .odt Information Disclosure Exploit
2018-05-02 00:00:00
LibreOffice 6.0.7 / 6.1.3 - Macro Code Execution Exploit
2019-04-18 00:00:00
LibreOffice < 6.2.6 Macro - Python Code Execution Exploit
2019-08-21 00:00:00
cvelist
cvelist
CVE-2018-10119
2018-04-15 16:00:00
CVE-2018-11790
2018-11-18 00:00:00
CVE-2018-10120
2018-04-15 16:00:00
packetstorm
packetstorm
LibreOffice 6.0.3 / OpenOffice 4.1.5 Information Disclosure
2018-05-03 00:00:00
LibreOffice Macro Code Execution
2019-04-17 00:00:00
BigBlueButton 2.2.25 File Disclosure / Server-Side Request Forgery
2020-10-21 00:00:00
metasploit
metasploit
LibreOffice Macro Code Execution
2019-04-12 19:01:29
LibreOffice Macro Python Code Execution
2019-07-30 21:07:20
thn
thn
Severe RCE Flaw Disclosed in Popular LibreOffice and OpenOffice Software
2019-02-05 11:11:00
Patches for 2 Severe LibreOffice Flaws Bypassed — Update to Patch Again
2019-08-16 09:19:00
malwarebytes
malwarebytes
New critical vulnerability discovered in open-source office suites
2019-02-06 17:16:50
centos
centos
autocorr, libreoffice, libreofficekit security update
2019-08-30 03:27:17
oraclelinux
oraclelinux
libreoffice security and bug fix update
2019-08-13 00:00:00
attackerkb
attackerkb
LibreOffice Macro Code Execution
2019-03-25 00:00:00
checkpoint_advisories
checkpoint_advisories
LibreOffice and Openoffice Remote Code Execution (CVE-2018-16858)
2019-02-04 00:00:00
veracode
veracode
Directory Traversal
2019-08-08 00:07:51
exploitdb
exploitdb
LibreOffice &lt; 6.0.7 / 6.1.3 - Macro Code Execution (Metasploit)
2019-04-18 00:00:00
BigBlueButton 2.2.25 - Arbitrary File Disclosure and Server-Side Request Forgery
2020-11-18 00:00:00
LibreOffice &lt; 6.2.6 Macro - Python Code Execution (Metasploit)
2019-08-21 00:00:00
alpinelinux
alpinelinux
CVE-2019-9852
2019-08-15 22:15:22
exploitpack
exploitpack
LibreOffice 6.2.6 Macro - Python Code Execution (Metasploit)
2019-08-21 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

0.963 High

EPSS

Percentile

99.6%

JSON
Related for USN-3883-1
nessus48openvas35redhat2mageia3osv9debian6suse5fedora4nvd6debiancve6cve6kaspersky5ubuntucve6redhatcve5prion6zdt3cvelist6packetstorm4metasploit2thn2malwarebytes1centos1oraclelinux1attackerkb1checkpoint_advisories1veracode1exploitdb3alpinelinux1exploitpack1