27 matches found
EUVD-2022-42567
Malicious code in bioql PyPI...
EUVD-2025-7377
Malicious code in bioql PyPI...
libreoffice: Macro URL arbitrary script execution
A flaw was found in LibreOffice. In the affected versions of LibreOffice, a link in a browser using that scheme could be constructed with an embedded inner URL that, when passed to LibreOffice, could call internal macros with arbitrary arguments...
libreoffice: Macro URL arbitrary script execution
A flaw was found in LibreOffice. In the affected versions of LibreOffice, a link in a browser using that scheme could be constructed with an embedded inner URL that, when passed to LibreOffice, could call internal macros with arbitrary arguments...
libreoffice: Macro URL arbitrary script execution
A flaw was found in LibreOffice. In the affected versions of LibreOffice, a link in a browser using that scheme could be constructed with an embedded inner URL that, when passed to LibreOffice, could call internal macros with arbitrary arguments...
libreoffice: Macro URL arbitrary script execution
A flaw was found in LibreOffice. In the affected versions of LibreOffice, a link in a browser using that scheme could be constructed with an embedded inner URL that, when passed to LibreOffice, could call internal macros with arbitrary arguments...
USN-7337-1: LibreOffice vulnerability
It was discovered that LibreOffice incorrectly handled Office URI Schemes. If a user or automated system were tricked into opening a specially crafted LibreOffice file, a remote attacker could possibly use this issue to call internal macros...
USN-7337-1 libreoffice vulnerability
It was discovered that LibreOffice incorrectly handled Office URI Schemes. If a user or automated system were tricked into opening a specially crafted LibreOffice file, a remote attacker could possibly use this issue to call internal macros...
Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : LibreOffice vulnerability (USN-7337-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7337-1 advisory. It was discovered that LibreOffice incorrectly handled Office URI Schemes. If a user or automated system were tricked into opening...
LibreOffice 24.8.x < 24.8.5 / 25.2.x < 25.2.1 (cve-2025-1080)
The version of LibreOffice installed on the remote host is prior to 24.8.5 or 25.2.1. It is, therefore, affected by a vulnerability as referenced in the cve-2025-1080 advisory. - LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An...
CVE-2025-1080
A flaw was found in LibreOffice. In the affected versions of LibreOffice, a link in a browser using that scheme could be constructed with an embedded inner URL that, when passed to LibreOffice, could call internal macros with arbitrary arguments...
CVE-2025-1080
LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice.command' specific to LibreOffice was added. In the affected versions of LibreOffice a link in a browser using that scheme could be constructed with...
CVE-2025-1080
LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice.command' specific to LibreOffice was added. In the affected versions of LibreOffice a link in a browser using that scheme could be constructed with...
DEBIAN-CVE-2025-1080
LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice.command' specific to LibreOffice was added. In the affected versions of LibreOffice a link in a browser using that scheme could be constructed with...
CVE-2025-1080
CVE-2025-1080 affects LibreOffice and concerns the handling of Office URI Schemes, including the LibreOffice-specific scheme “vnd.libreoffice.command.” The vulnerability arises from an embedded inner URL in a browser-constructed link that, when passed to LibreOffice, could cause internal macros t...
PT-2025-9702 · Document Foundation +9 · Libreoffice +9
Name of the Vulnerable Software and Affected Versions: LibreOffice versions 24.8 through 24.8.4 LibreOffice versions 25.2 through 25.2.0 Description: The issue affects LibreOffice's integration with MS SharePoint server, where an additional scheme 'vnd.libreoffice.command' was added to support...
CVE-2022-47502
Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments. Several URI Schemes are defined for this purpose. Links can be activated by clicks, or by automatic document events. The execution of such links must be subject to user approval. In the affected...
Apache OpenOffice < 4.1.15 Multiple Vulnerabilities
The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.15. It is, therefore, affected by multiple vulnerabilities as stated in the vendor advisories and release notes. - Apache OpenOffice documents can contain links that call internal macros with arbitrary...
Apache OpenOffice < 4.1.15 Multiple Vulnerabilities (macOS)
The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.15. It is, therefore, affected by multiple vulnerabilities as stated in the vendor advisories and release notes. - Apache OpenOffice documents can contain links that call internal macros with arbitrary...
CVE-2023-47804
Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments. Several URI Schemes are defined for this purpose. Links can be activated by clicks, or by automatic document events. The execution of such links must be subject to user approval. In the affected...