Lucene search
Veracode Vulnerability DatabaseVERACODE:37592HistoryOct 19, 2022 - 1:44 a.m.
Remote Code Execution (RCE)
2022-10-1901:44:18
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
libreoffice
vulnerability
remote code execution
0.002 Low
EPSS
Percentile
56.2%
libreoffice is vulnerable to Remote Code Execution (RCE). The vulnerability exists because an additional scheme vnd.libreoffice.command was added which allows an attacker to call internal macros with arbitrary arguments.
References
lists.debian.org/debian-lts-announce/2023/03/msg00022.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TORANVTIWWBH3DNJR4UZATAG67KZOH32/
lists.fedoraproject.org/archives/list/[email protected]/message/TORANVTIWWBH3DNJR4UZATAG67KZOH32/
security-tracker.debian.org/tracker/CVE-2022-3140
security.gentoo.org/glsa/202212-04
www.debian.org/security/2022/dsa-5252
www.libreoffice.org/about-us/security/advisories/CVE-2022-3140
Related
kaspersky
kaspersky
KLA20006 RCE vulnerability in LibreOffice
2022-10-11 00:00:00
redhatcve
redhatcve
CVE-2022-3140
2022-10-14 05:29:00
zdi
zdi
LibreOffice Exposed Dangerous Function Remote Code Execution Vulnerability
2022-10-21 00:00:00
osv
osv
libreoffice - security update
2022-10-12 00:00:00
Moderate: libreoffice security update
2023-01-23 00:00:00
Moderate: libreoffice security update
2023-01-12 08:25:20
openvas
openvas
Fedora: Security Advisory for libreoffice (FEDORA-2022-775c747e4a)
2022-10-24 00:00:00
Mageia: Security Advisory (MGASA-2022-0400)
2022-10-31 00:00:00
Debian: Security Advisory (DSA-5252-1)
2022-10-14 00:00:00
prion
prion
Design/Logic Flaw
2022-10-11 21:15:00
nvd
nvd
CVE-2022-3140
2022-10-11 21:15:16
nessus
nessus
Debian DSA-5252-1 : libreoffice - security update
2022-10-13 00:00:00
GLSA-202212-04 : LibreOffice: Arbitrary Code Execution
2022-12-18 00:00:00
Fedora 35 : 1:libreoffice (2022-775c747e4a)
2022-12-22 00:00:00
ubuntucve
ubuntucve
CVE-2022-3140
2022-10-11 00:00:00
gentoo
gentoo
LibreOffice: Arbitrary Code Execution
2022-12-19 00:00:00
debian
debian
[SECURITY] [DSA 5252-1] libreoffice security update
2022-10-12 17:35:07
[SECURITY] [DLA 3368-1] libreoffice security update
2023-03-26 21:05:00
debiancve
debiancve
CVE-2022-3140
2022-10-11 21:15:16
fedora
fedora
[SECURITY] Fedora 35 Update: libreoffice-7.2.7.2-2.fc35
2022-10-23 09:13:01
mageia
mageia
Updated libreoffice packages fix security vulnerability
2022-10-29 02:32:51
cvelist
cvelist
CVE-2022-3140 Macro URL arbitrary script execution
2022-10-11 00:00:00
alpinelinux
alpinelinux
CVE-2022-3140
2022-10-11 21:15:16
cve
cve
CVE-2022-3140
2022-10-11 21:15:16
suse
suse
Security update for libreoffice (important)
2022-10-19 00:00:00
almalinux
almalinux
Moderate: libreoffice security update
2023-01-23 00:00:00
Moderate: libreoffice security update
2023-01-12 00:00:00
redhat
redhat
(RHSA-2023:0304) Moderate: libreoffice security update
2023-01-23 14:29:58
(RHSA-2023:0089) Moderate: libreoffice security update
2023-01-12 08:25:20
rocky
rocky
libreoffice security update
2023-01-12 08:25:20
libreoffice security update
2023-01-23 14:29:58
oraclelinux
oraclelinux
libreoffice security update
2023-01-24 00:00:00
libreoffice security update
2023-01-18 00:00:00
ubuntu
ubuntu
LibreOffice vulnerabilities
2022-10-20 00:00:00