Vulnerabilities > Libreoffice

DATE CVE VULNERABILITY TITLE RISK
2022-02-24 CVE-2021-25636 Improper Certificate Validation vulnerability in Libreoffice
LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid.
network
low complexity
libreoffice CWE-295
5.0
2021-10-12 CVE-2021-25634 Improper Certificate Validation vulnerability in multiple products
LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid.
network
low complexity
libreoffice debian CWE-295
5.0
2021-10-11 CVE-2021-25633 Improper Certificate Validation vulnerability in multiple products
LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid.
network
low complexity
libreoffice debian CWE-295
5.0
2021-05-03 CVE-2021-25631 Unspecified vulnerability in Libreoffice 7.0.4/7.1.0/7.1.1
In the LibreOffice 7-1 series in versions prior to 7.1.2, and in the 7-0 series in versions prior to 7.0.5, the denylist can be circumvented by manipulating the link so it doesn't match the denylist but results in ShellExecute attempting to launch an executable type.
network
libreoffice
critical
9.3
2021-01-07 CVE-2018-18688 Improper Verification of Cryptographic Signature vulnerability in multiple products
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures.
5.0
2020-06-08 CVE-2020-12803 Improper Input Validation vulnerability in multiple products
ODF documents can contain forms to be filled out by the user.
4.3
2020-06-08 CVE-2020-12802 LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. 4.3
2020-05-18 CVE-2020-12801 Cleartext Storage of Sensitive Information vulnerability in multiple products
If LibreOffice has an encrypted document open and crashes, that document is auto-saved encrypted.
network
low complexity
libreoffice opensuse CWE-312
5.0
2019-12-20 CVE-2012-5639 Exposure of Resource to Wrong Sphere vulnerability in multiple products
LibreOffice and OpenOffice automatically open embedded content
4.3
2019-09-27 CVE-2019-9853 Improper Encoding or Escaping of Output vulnerability in Libreoffice
LibreOffice documents can contain macros.
6.8