Lucene search
+L

19 matches found

redhatcve
redhatcve
added 2026/01/09 11:35 a.m.5 views

CVE-2021-41830

It is possible for an attacker to manipulate signed documents and macros to appear to come from a trusted source. All versions of Apache OpenOffice up to 4.1.10 are affected. Users are advised to update to version 4.1.11. See CVE-2021-25633 for the LibreOffice advisory...

7.5CVSS6.8AI score0.01346EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-47565

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00238EPSS
Exploits0References1
nessus
nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: libreoffice (TSSA-2024:0407)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0407 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.8CVSS7.2AI score0.00238EPSS
Exploits0References2
astralinux
astralinux
added 2024/11/23 3:4 a.m.3 views

Astra Linux – Vulnerability in LibreOffice

The Certificate Validation user interface in LibreOffice may contain potential vulnerabilities. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document containing a signed macro is opened, LibreOffice displays a warning before th...

7.8CVSS7AI score0.00238EPSS
Exploits0References3
amazon
amazon
added 2024/10/02 12:0 a.m.3 views

Important: libreoffice

Issue Overview: Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice befo...

7.8CVSS7AI score0.00238EPSS
Exploits0
nessus
nessus
added 2024/10/02 12:0 a.m.16 views

Amazon Linux 2 : libreoffice (ALASLIBREOFFICE-2024-004)

The version of libreoffice installed on the remote host is prior to 5.3.6.1-21. It is, therefore, affected by a vulnerability as referenced in the ALAS2LIBREOFFICE-2024-004 advisory. Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts tha...

7.8CVSS7.3AI score0.00238EPSS
Exploits0References4
osv
osv
added 2024/09/28 9:34 p.m.5 views

MGASA-2024-0320 Updated libreoffice package fixes security vulnerability

The Certificate Validation user interface in LibreOffice allows a potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice before the mac...

7.8CVSS7.4AI score0.00238EPSS
Exploits0References5
redhat
redhat
added 2024/08/21 8:28 a.m.5 views

libreoffice: Ability to trust not validated macro signatures removed in high security mode

A vulnerability was found in versions of LibreOffice from 24.2 to before 24.2.5. When a document containing a signed macro fails verification, LibreOffice will display a warning which the user can choose to ignore the failure and enable the macro anyways...

7.8CVSS5.7AI score0.00238EPSS
Exploits0References5
redhat
redhat
added 2024/08/20 9:55 a.m.61 views

libreoffice: Ability to trust not validated macro signatures removed in high security mode

A vulnerability was found in versions of LibreOffice from 24.2 to before 24.2.5. When a document containing a signed macro fails verification, LibreOffice will display a warning which the user can choose to ignore the failure and enable the macro anyways...

7.8CVSS5.7AI score0.00238EPSS
Exploits0References5
openvas
openvas
added 2024/08/08 12:0 a.m.7 views

LibreOffice Improper Certificate Validation Vulnerability (Aug 2024) - Windows

LibreOffice is prone to an improper certificate validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS7.6AI score0.00238EPSS
Exploits0References2
openvas
openvas
added 2024/08/08 12:0 a.m.10 views

LibreOffice Improper Certificate Validation Vulnerability (Aug 2024) - Linux

LibreOffice is prone to an improper certificate validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS7.5AI score0.00238EPSS
Exploits0References2
redhatcve
redhatcve
added 2024/08/06 2:45 a.m.13 views

CVE-2024-6472

A vulnerability was found in versions of LibreOffice from 24.2 to before 24.2.5. When a document containing a signed macro fails verification, LibreOffice will display a warning which the user can choose to ignore the failure and enable the macro anyways. Mitigation Mitigation for this issue is...

7.8CVSS7.2AI score0.00238EPSS
Exploits0References4
susecve
susecve
added 2024/08/06 2:12 a.m.2 views

SUSE CVE-2024-6472

Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice before the macro is...

7.8CVSS6.9AI score0.00238EPSS
Exploits0References3
osv
osv
added 2024/08/05 1:15 p.m.2 views

DEBIAN-CVE-2024-6472

Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice before the macro is...

7.8CVSS7.4AI score0.00238EPSS
Exploits0References1
osv
osv
added 2024/08/05 1:15 p.m.8 views

CVE-2024-6472

Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice before the macro is...

7.8CVSS6.6AI score0.00238EPSS
Exploits0References1
osv
osv
added 2024/08/05 1:15 p.m.4 views

UBUNTU-CVE-2024-6472

Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice before the macro is...

7.8CVSS5.8AI score0.00238EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2024/08/05 1:15 p.m.13 views

CVE-2024-6472

Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice before the macro is...

7.8CVSS7AI score0.00238EPSS
Exploits0References3
cve
cve
added 2024/08/05 12:55 p.m.96 views

CVE-2024-6472

The CVE-2024-6472 issue affects LibreOffice (vulnerable in 24.2 before 24.2.5) where the Certificate Validation user interface for signed macros may mislead users: if certificate verification fails, warnings could be ignored and macros enabled anyway. The root cause is in the macro-signature vali...

7.8CVSS7.7AI score0.00238EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2024/08/05 12:0 a.m.4 views

PT-2024-5730

Name of the Vulnerable Software and Affected Versions LibreOffice versions 24.2 through 24.2.4 Description The issue is related to the Certificate Validation user interface in LibreOffice, which allows a potential vulnerability. Signed macros are scripts that have been digitally signed by the...

10CVSS7.2AI score0.01008EPSS
Exploits0References58
Rows per page
Query Builder