Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:ALSA-2023:0089
HistoryJan 12, 2023 - 12:00 a.m.

Moderate: libreoffice security update

2023-01-1200:00:00
Google
osv.dev
4

7.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.2%

JSON

LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite.

Security Fix(es):

  • libreoffice: Macro URL arbitrary script execution (CVE-2022-3140)
  • libreoffice: Execution of Untrusted Macros Due to Improper Certificate Validation (CVE-2022-26305)
  • libreoffice: Static Initialization Vector Allows to Recover Passwords for Web Connections Without Knowing the Master Password (CVE-2022-26306)
  • libreoffice: Weak Master Keys (CVE-2022-26307)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Related

almalinux 2
rocky 2
osv 7
nessus 24
oraclelinux 2
redhat 2
kaspersky 2
openvas 13
debian 2
ubuntu 2
suse 1
thn 1
freebsd 1
ubuntucve 4
cnvd 2
debiancve 4
veracode 4
cve 6
prion 6
alpinelinux 4
redhatcve 4
cvelist 6
mageia 1
fedora 1
zdi 1
gentoo 1
almalinux
almalinux
Moderate: libreoffice security update
2023-01-12 00:00:00
Moderate: libreoffice security update
2023-01-23 00:00:00
rocky
rocky
libreoffice security update
2023-01-12 08:25:20
libreoffice security update
2023-01-23 14:29:58
osv
osv
Moderate: libreoffice security update
2023-01-12 08:25:20
Moderate: libreoffice security update
2023-01-23 14:29:58
Moderate: libreoffice security update
2023-01-23 00:00:00
nessus
nessus
Rocky Linux 9 : libreoffice (RLSA-2023:0304)
2023-11-06 00:00:00
RHEL 9 : libreoffice (RHSA-2023:0304)
2023-01-23 00:00:00
Rocky Linux 8 : libreoffice (RLSA-2023:0089)
2023-11-07 00:00:00
oraclelinux
oraclelinux
libreoffice security update
2023-01-18 00:00:00
libreoffice security update
2023-01-24 00:00:00
redhat
redhat
(RHSA-2023:0089) Moderate: libreoffice security update
2023-01-12 08:25:20
(RHSA-2023:0304) Moderate: libreoffice security update
2023-01-23 14:29:58
kaspersky
kaspersky
KLA12593 Multiple vulnerabilities in LibreOffice
2022-07-25 00:00:00
KLA20006 RCE vulnerability in LibreOffice
2022-10-11 00:00:00
openvas
openvas
Libre Office 7.2.x < 7.2.7, 7.3.x < 7.3.3 Multiple Vulnerabilities (Jul 2022) - Mac OS X
2022-07-28 00:00:00
Libre Office 7.2.x < 7.2.7, 7.3.x < 7.3.3 Multiple Vulnerabilities (Jul 2022) - Linux
2022-07-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:3650-1)
2022-10-19 00:00:00
debian
debian
[SECURITY] [DLA 3368-1] libreoffice security update
2023-03-26 21:05:25
[SECURITY] [DSA 5252-1] libreoffice security update
2022-10-12 17:35:31
ubuntu
ubuntu
LibreOffice vulnerabilities
2022-10-06 00:00:00
LibreOffice vulnerabilities
2022-10-20 00:00:00
suse
suse
Security update for libreoffice (important)
2022-10-19 00:00:00
thn
thn
LibreOffice Releases Software Update to Patch 3 New Vulnerabilities
2022-07-28 06:41:00
freebsd
freebsd
Apache OpenOffice -- master password vulnerabilities
2022-02-25 00:00:00
ubuntucve
ubuntucve
CVE-2022-26307
2022-07-25 00:00:00
CVE-2022-26305
2022-07-25 00:00:00
CVE-2022-26306
2022-07-25 00:00:00
cnvd
cnvd
LibreOffice encryption problem vulnerability
2022-07-27 00:00:00
LibreOffice Trust Management Issue Vulnerability (CNVD-2022-54898)
2022-07-27 00:00:00
debiancve
debiancve
CVE-2022-26306
2022-07-25 15:15:00
CVE-2022-26307
2022-07-25 15:15:00
CVE-2022-26305
2022-07-25 15:15:00
veracode
veracode
Improper Certificate Validation
2022-08-10 11:45:43
Information Disclosure
2022-08-10 11:52:02
Insecure Cryptographic Function
2022-08-10 11:51:50
cve
cve
CVE-2022-26307
2022-07-25 15:15:00
CVE-2022-26305
2022-07-25 15:15:00
CVE-2022-26306
2022-07-25 15:15:00
prion
prion
Design/Logic Flaw
2022-07-25 15:15:00
Design/Logic Flaw
2022-07-25 15:15:00
Input validation
2022-07-25 15:15:00
alpinelinux
alpinelinux
CVE-2022-26307
2022-07-25 15:15:00
CVE-2022-26305
2022-07-25 15:15:00
CVE-2022-26306
2022-07-25 15:15:00
redhatcve
redhatcve
CVE-2022-26307
2022-08-16 09:38:25
CVE-2022-26306
2022-08-16 09:38:21
CVE-2022-26305
2022-08-16 09:38:21
cvelist
cvelist
CVE-2022-26306 Execution of Untrusted Macros Due to Improper Certificate Validation
2022-07-25 00:00:00
CVE-2022-26307 Weak Master Keys
2022-07-25 00:00:00
CVE-2022-26305 Execution of Untrusted Macros Due to Improper Certificate Validation
2022-07-25 00:00:00
mageia
mageia
Updated libreoffice packages fix security vulnerability
2022-10-29 02:32:51
fedora
fedora
[SECURITY] Fedora 35 Update: libreoffice-7.2.7.2-2.fc35
2022-10-23 09:13:01
zdi
zdi
LibreOffice Exposed Dangerous Function Remote Code Execution Vulnerability
2022-10-21 00:00:00
gentoo
gentoo
LibreOffice: Arbitrary Code Execution
2022-12-19 00:00:00

7.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.2%

JSON
Related for OSV:ALSA-2023:0089
almalinux2rocky2osv7nessus24oraclelinux2redhat2kaspersky2openvas13debian2ubuntu2suse1thn1freebsd1ubuntucve4cnvd2debiancve4veracode4cve6prion6alpinelinux4redhatcve4cvelist6mageia1fedora1zdi1gentoo1