Описание
Insufficient macro permission validation of The Document Foundation LibreOffice allows an attacker to execute built-in macros without warning. In affected versions LibreOffice supports hyperlinks with macro or similar built-in command targets that can be executed when activated without warning the user.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | released | 4:7.6.4-0ubuntu1 |
| esm-infra/focal | not-affected | 1:6.4.7-0ubuntu0.20.04.9 |
| focal | released | 1:6.4.7-0ubuntu0.20.04.9 |
| jammy | released | 1:7.3.7-0ubuntu0.22.04.4 |
| lunar | released | 4:7.5.9-0ubuntu0.23.04.1 |
| mantic | released | 4:7.6.4-0ubuntu0.23.10.1 |
| trusty | ignored | end of standard support |
| upstream | released | 7.5.9,7.6.4 |
| xenial | ignored | end of standard support |
Показывать по
EPSS
8.3 High
CVSS3
Связанные уязвимости
Insufficient macro permission validation of The Document Foundation LibreOffice allows an attacker to execute built-in macros without warning. In affected versions LibreOffice supports hyperlinks with macro or similar built-in command targets that can be executed when activated without warning the user.
Insufficient macro permission validation of The Document Foundation LibreOffice allows an attacker to execute built-in macros without warning. In affected versions LibreOffice supports hyperlinks with macro or similar built-in command targets that can be executed when activated without warning the user.
Insufficient macro permission validation of The Document Foundation Li ...
Insufficient macro permission validation of The Document Foundation LibreOffice allows an attacker to execute built-in macros without warning. In affected versions LibreOffice supports hyperlinks with macro or similar built-in command targets that can be executed when activated without warning the user.
Уязвимость пакета офисных программ LibreOffice, связанная с возможностью внедрения кода или данных, позволяющая нарушителю выполнить произвольный код
EPSS
8.3 High
CVSS3