Vulnerabilities > Apache > Openoffice > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-29 CVE-2023-47804 Argument Injection or Modification vulnerability in Apache Openoffice
Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments.
network
low complexity
apache CWE-88
8.8
2023-03-24 CVE-2022-38745 Unspecified vulnerability in Apache Openoffice
Apache OpenOffice versions before 4.1.14 may be configured to add an empty entry to the Java class path.
local
low complexity
apache
7.8
2023-03-24 CVE-2022-47502 Unspecified vulnerability in Apache Openoffice
Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments.
local
low complexity
apache
7.8
2022-08-15 CVE-2022-37400 Unspecified vulnerability in Apache Openoffice
Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database.
network
low complexity
apache
8.8
2022-08-15 CVE-2022-37401 Unspecified vulnerability in Apache Openoffice
Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database.
network
low complexity
apache
8.8
2021-10-11 CVE-2021-41830 Improper Verification of Cryptographic Signature vulnerability in Apache Openoffice
It is possible for an attacker to manipulate signed documents and macros to appear to come from a trusted source.
network
low complexity
apache CWE-347
7.5
2021-10-11 CVE-2021-41832 Improper Verification of Cryptographic Signature vulnerability in Apache Openoffice
It is possible for an attacker to manipulate documents to appear to be signed by a trusted source.
network
low complexity
apache CWE-347
7.5
2021-10-07 CVE-2021-28129 Unspecified vulnerability in Apache Openoffice 4.1.8
While working on Apache OpenOffice 4.1.8 a developer discovered that the DEB package did not install using root, but instead used a userid and groupid of 500.
local
low complexity
apache
7.8
2021-09-23 CVE-2021-33035 Classic Buffer Overflow vulnerability in Apache Openoffice
Apache OpenOffice opens dBase/DBF documents and shows the contents as spreadsheets.
local
low complexity
apache CWE-120
7.8
2021-04-15 CVE-2021-30245 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Apache Openoffice
The project received a report that all versions of Apache OpenOffice through 4.1.8 can open non-http(s) hyperlinks.
network
low complexity
apache CWE-610
8.8