High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-03	CVE-2021-25631	Unspecified vulnerability in Libreoffice In the LibreOffice 7-1 series in versions prior to 7.1.2, and in the 7-0 series in versions prior to 7.0.5, the denylist can be circumvented by manipulating the link so it doesn't match the denylist but results in ShellExecute attempting to launch an executable type. network low complexity libreoffice	8.8
2019-09-27	CVE-2019-9853	Improper Encoding or Escaping of Output vulnerability in Libreoffice LibreOffice documents can contain macros. local low complexity libreoffice CWE-116	7.8
2019-09-06	CVE-2019-9854	Path Traversal vulnerability in multiple products LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. local low complexity libreoffice redhat debian canonical opensuse fedoraproject CWE-22	7.8
2019-08-15	CVE-2019-9852	Path Traversal vulnerability in multiple products LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. local low complexity debian canonical opensuse fedoraproject libreoffice CWE-22	7.8
2019-05-09	CVE-2019-9847	Improper Input Validation vulnerability in Libreoffice A vulnerability in LibreOffice hyperlink processing allows an attacker to construct documents containing hyperlinks pointing to the location of an executable on the target users file system. local low complexity libreoffice CWE-20	7.8
2018-05-01	CVE-2018-10583	Information Exposure vulnerability in multiple products An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=file://192.168.0.2/test.jpg within an office:document-content element in a .odt XML document. network low complexity libreoffice apache debian redhat canonical CWE-200	7.5
2018-04-16	CVE-2018-10120	Improper Validation of Array Index vulnerability in multiple products The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not validate a customizations index, which allows remote attackers to cause a denial of service (heap-based buffer overflow with write access) or possibly have unspecified other impact via a crafted document that contains a certain Microsoft Word record. local low complexity debian libreoffice redhat canonical CWE-129	7.8
2018-04-16	CVE-2018-10119	Use After Free vulnerability in multiple products sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 and 6.x before 6.0.1.1 uses an incorrect integer data type in the StgSmallStrm class, which allows remote attackers to cause a denial of service (use-after-free with write access) or possibly have unspecified other impact via a crafted document that uses the structured storage ole2 wrapper file format. local low complexity libreoffice debian redhat canonical CWE-416	7.8
2017-09-09	CVE-2017-14226	Out-of-bounds Read vulnerability in multiple products WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service (heap-based buffer over-read in the WPXTableList class in WPXTable.cpp). network low complexity libreoffice libwpd CWE-125	7.5
2016-07-08	CVE-2016-4324	Improper Input Validation vulnerability in multiple products Use-after-free vulnerability in LibreOffice before 5.1.4 allows remote attackers to execute arbitrary code via a crafted RTF file, related to stylesheet and superscript tokens. local low complexity debian libreoffice canonical CWE-20	7.8