Lucene search
K

9 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in hsqldb1.8.0, hsqldb

A flaw was discovered in the Libreoffice package. An attacker can create an odb file that contains a “database/script” file with a SCRIPT command. The contents of this file can then be written into a new file, whose location is determined by the attacker...

5.5CVSS6.3AI score0.65692EPSS
Exploits0References1
OSV
OSV
added 2026/02/28 12:44 p.m.7 views

OESA-2026-1430 hsqldb security update

HSQLdb is a relational database engine written in JavaTM , with a JDBC driver, supporting a subset of ANSI-92 SQL. It offers a small about 100k, fast database engine which offers both in memory and disk based tables. Embedded and server modes are available. Additionally, it includes tools such as...

5.5CVSS6AI score0.65692EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-23463

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.65692EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-12802

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default...

5.3CVSS6.2AI score0.01944EPSS
Exploits0References2
Amazon
Amazon
added 2024/05/30 12:0 a.m.27 views

Medium: hsqldb

Issue Overview: A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the attacker. CVE-2023-1183 Affected Packages: hsqldb...

5.5CVSS5.7AI score0.65692EPSS
Exploits0
OSV
OSV
added 2023/07/10 4:15 p.m.5 views

CVE-2023-1183

A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the attacker...

5.5CVSS5.5AI score0.65692EPSS
Exploits0References5
OSV
OSV
added 2022/07/25 3:15 p.m.7 views

CVE-2022-26307

LibreOffice supports the storage of passwords for web connections in the user’s configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in LibreOffice existed where master key was poorly encoded resulting in weakening its entropy from 128 t...

8.8CVSS8.5AI score0.01139EPSS
Exploits0References3
OSV
OSV
added 2022/07/25 3:15 p.m.4 views

CVE-2022-26306

LibreOffice supports the storage of passwords for web connections in the user’s configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in LibreOffice existed where the required initialization vector for encryption was always the same which...

7.5CVSS8.5AI score0.00804EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/11/10 12:0 a.m.4 views

The vulnerability of the LibreOffice office software package, related to errors in generating documents with files documentsignatures.xml and macrosignatures.xml, allows attackers to manipulate signed documents.

The vulnerability of the LibreOffice office software package is related to errors in the creation of documents with the files documentsignatures.xml and macrosignatures.xml. Exploiting this vulnerability allows a malicious actor to manipulate signed documents remotely...

7.5CVSS7.4AI score0.00709EPSS
Exploits0References10Affected Software6
Rows per page
Query Builder