CVE-2022-3140

Published: Oct 11, 2022Modified: Nov 21, 2024

6.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Exploitability: 2.8 / Impact: 3.4

Source: NVD

Description

LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice.command' specific to LibreOffice was added. In the affected versions of LibreOffice links using that scheme could be constructed to call internal macros with arbitrary arguments. Which when clicked on, or activated by document events, could result in arbitrary script execution without warning. This issue affects: The Document Foundation LibreOffice 7.4 versions prior to 7.4.1; 7.3 versions prior to 7.3.6.

Affected (4)

Products: Libreoffice: Libreoffice · Debian: Debian Linux · Fedoraproject: Fedora

1 product

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Libreoffice Libreoffice	From 7.3.0 to 7.3.6
Libreoffice Libreoffice	Version 7.4.0

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 11.0

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 35

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.

References (10)

https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html

Source: security@documentfoundation.org

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TORANVTIWWBH3DNJR4UZATAG67KZOH32/

Source: security@documentfoundation.org

https://security.gentoo.org/glsa/202212-04

Source: security@documentfoundation.org

Third Party Advisory

https://www.debian.org/security/2022/dsa-5252

Source: security@documentfoundation.org

Third Party Advisory

https://www.libreoffice.org/about-us/security/advisories/CVE-2022-3140

Source: security@documentfoundation.org

Vendor Advisory

https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TORANVTIWWBH3DNJR4UZATAG67KZOH32/

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/202212-04

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.debian.org/security/2022/dsa-5252

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.libreoffice.org/about-us/security/advisories/CVE-2022-3140

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.