Lucene search
K

6 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in LibreOffice

There is a vulnerability in input validation in the GStreamer integration of The Document Foundation LibreOffice, which allows an attacker to execute arbitrary GStreamer plugins. In affected versions, the filename of the embedded video is not properly escaped when passed to GStreamer, enabling an...

8.8CVSS7.5AI score0.01017EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/12 12:0 a.m.4 views

Fireshare 命令注入漏洞

Fireshare is a media hosting software by the individual developer Shane Israel. A command injection vulnerability exists in Fireshare versions 1.2.30 and earlier, which stems from uploading a video file with the filename spliced directly into a shell command, which could lead to remote code...

9.8CVSS8.2AI score0.00589EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/12 12:0 a.m.5 views

PT-2025-50895

Name of the Vulnerable Software and Affected Versions Fireshare versions 1.2.30 and below Description Fireshare is a self-hosted media and link sharing platform. Versions 1.2.30 and below allow an authenticated user, or an unauthenticated user if Public Uploads are enabled, to construct a malicio...

9.8CVSS7.1AI score0.00589EPSS
Exploits0References6
OSV
OSV
added 2025/04/17 9:57 p.m.9 views

CLSA-2025-1744927038 libreoffice: Fix of CVE-2023-6185

CVE-2023-6185: escape filename of embedded video to prevent execution of arbitrary GStreamer plugins...

8.8CVSS7.5AI score0.01017EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/11 12:0 a.m.7 views

PT-2023-7886 · Document Foundation +10 · Libreoffice +10

Name of the Vulnerable Software and Affected Versions: LibreOffice affected versions not specified Description: The issue is related to improper input validation in the GStreamer integration of LibreOffice, allowing an attacker to execute arbitrary GStreamer plugins. In affected versions, the...

8.8CVSS6.8AI score0.65692EPSS
Exploits2References114
OSV
OSV
added 2023/12/11 12:0 a.m.1 views

UBUNTU-CVE-2023-6185

Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute arbitrary GStreamer plugins. In affected versions the filename of the embedded video is not sufficiently escaped when passed to GStreamer enabling an attacker to r...

8.8CVSS6.1AI score0.01017EPSS
Exploits0References5
Rows per page
Query Builder