Lucene search
K

310 matches found

OSV
OSV
added 2023/03/24 4:15 p.m.5 views

UBUNTU-CVE-2022-38745

Apache OpenOffice versions before 4.1.14 may be configured to add an empty entry to the Java class path. This may lead to run arbitrary Java code from the current directory...

7.8CVSS7.2AI score0.00872EPSS
Exploits0References5
Prion
Prion
added 2023/03/24 4:15 p.m.31 views

Design/Logic Flaw

Apache OpenOffice versions before 4.1.14 may be configured to add an empty entry to the Java class path. This may lead to run arbitrary Java code from the current directory...

4.4CVSS7.6AI score0.00872EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/03/24 3:57 p.m.40 views

CVE-2022-47502 Apache OpenOffice: Macro URL arbitrary script execution

Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments. Several URI Schemes are defined for this purpose. Links can be activated by clicks, or by automatic document events. The execution of such links must be subject to user approval. In the affected...

8.2AI score0.00958EPSS
Exploits0References4
CVE
CVE
added 2023/03/24 3:57 p.m.88 views

CVE-2022-47502

Apache OpenOffice

7.8CVSS7.9AI score0.00958EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2023/03/24 3:56 p.m.148 views

CVE-2022-38745

CVE-2022-38745 : The vulnerability described as “Empty entry in Java class path” is referenced across multiple advisories in connected documents, affectingLibreOffice packages (e.g., MiracleLinux, Red Hat, Oracle Linux, Alibaba Cloud Linux) and OpenOffice-related contexts. The common impact is po...

7.8CVSS7.7AI score0.00872EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/24 3:56 p.m.8 views

CVE-2022-38745 Apache OpenOffice: Empty entry in Java class path

Apache OpenOffice versions before 4.1.14 may be configured to add an empty entry to the Java class path. This may lead to run arbitrary Java code from the current directory...

6.9AI score0.00872EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/03/24 3:56 p.m.34 views

CVE-2022-38745 Apache OpenOffice: Empty entry in Java class path

Apache OpenOffice versions before 4.1.14 may be configured to add an empty entry to the Java class path. This may lead to run arbitrary Java code from the current directory...

8AI score0.00872EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/24 12:0 a.m.3 views

Apache OpenOffice 安全漏洞

Apache OpenOffice is an open source office software suite from the U.S. Apache Apache Foundation. The suite contains text documents , spreadsheets , presentations , drawings , databases and so on. A code issue vulnerability exists in Apache OpenOffice versions prior to 4.1.14, which stems from th...

7.8CVSS7.1AI score0.00872EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/03/24 12:0 a.m.8 views

Apache OpenOffice 参数注入漏洞

Apache OpenOffice is an open source office software suite from the U.S. Apache Apache Foundation. The suite contains text documents , spreadsheets , presentations , drawings , databases and so on. A code execution vulnerability exists in Apache OpenOffice that originates from a link containing an...

7.8CVSS7.7AI score0.00958EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.8 views

PT-2023-1972 · Apache +6 · Apache Openoffice +7

Name of the Vulnerable Software and Affected Versions: Apache OpenOffice versions before 4.1.14 Description: The issue is related to the possibility of adding an empty entry to the Java class path in Apache OpenOffice. This could allow a remote attacker to execute arbitrary Java code from the...

10CVSS7AI score0.64635EPSS
Exploits2References48
Tenable Nessus
Tenable Nessus
added 2023/03/07 12:0 a.m.42 views

FreeBSD : Apache OpenOffice -- master password vulnerabilities (6678211c-bd47-11ed-beb0-1c1b0d9ea7e6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 6678211c-bd47-11ed-beb0-1c1b0d9ea7e6 advisory. - Apache OpenOffice supports the storage of passwords for web connections in the user's...

8.8CVSS8AI score0.01419EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:28 a.m.5 views

SUSE CVE-2014-3524

Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet...

9.3CVSS8AI score0.14596EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:41 a.m.2 views

SUSE CVE-2017-12608

A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service memory corruption and application crash potentially resulting in arbitrary code execution...

7.8CVSS8AI score0.02889EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/12/15 12:0 a.m.4 views

PT-2022-6496 · Apache · Apache Openoffice +1

Name of the Vulnerable Software and Affected Versions: Apache OpenOffice affected versions not specified Description: The issue is related to the execution of links in Apache OpenOffice documents that can call internal macros with arbitrary arguments. Several URI Schemes are defined for this...

7.8CVSS7.6AI score0.00958EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2022/08/17 12:0 a.m.47 views

Apache OpenOffice < 4.1.13 Multiple Vulnerabilities

The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.13. It is, therefore, affected by multiple vulnerabilities: - Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. The stored passwords are encrypted wi...

8.8CVSS7.8AI score0.01419EPSS
Exploits0References5
NVD
NVD
added 2022/08/15 11:21 a.m.20 views

CVE-2022-37401

Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in OpenOffice existed where master key was poorly encoded resulting in weakening its entropy from...

8.8CVSS0.01419EPSS
Exploits0References2
Prion
Prion
added 2022/08/15 11:21 a.m.18 views

Design/Logic Flaw

Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in OpenOffice existed where master key was poorly encoded resulting in weakening its entropy from...

6.5CVSS8.3AI score0.01419EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/08/15 11:21 a.m.24 views

Design/Logic Flaw

Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in OpenOffice existed where the required initialization vector for encryption was always the same...

6.5CVSS7.8AI score0.0082EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/08/15 12:0 a.m.3 views

Apache OpenOffice 安全特征问题特征问题漏洞

Apache OpenOffice is an open source office software suite from the U.S. Apache Apache Foundation. The suite contains text documents, spreadsheets, presentations, drawings, databases, and more. A security signature issue vulnerability exists in Apache OpenOffice versions prior to 4.1.13, which ste...

8.8CVSS7.8AI score0.0082EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/08/13 6:40 a.m.30 views

CVE-2022-37401 Apache OpenOffice Weak Master Keys

Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in OpenOffice existed where master key was poorly encoded resulting in weakening its entropy from...

8.7AI score0.01419EPSS
Exploits0References2
Rows per page
Query Builder