Libreoffice
libreoffice
71 CVEs • 1 product
Products (1)
Click to collapseToggle
Products (1)
Click to collapse
CVEs (71)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
4Canonical LibreofficeOpensuse+1 more6Enterprise Linux Desktop Enterprise Linux ServerEnterprise Linux Workstation+3 moreMay 6, 2026 Nov 7, 2014 N/A· v4 N/A· v3 7.5 HIGH· v2 Use-after-free vulnerability in the socket manager of Impress Remote in LibreOffice 4.x before 4.2.7 and 4.3.x before 4.3.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code...Show more |
3Apache LibreofficeRedhat5Enterprise Linux Desktop Enterprise Linux ServerEnterprise Linux Workstation+2 moreMay 6, 2026 Aug 27, 2014 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org (OOo) might allow remote attackers to embed arbitrary data into documents via crafted OLE objects. |
2Apache Libreoffice2Libreoffice OpenofficeMay 6, 2026 Aug 26, 2014 N/A· v4 N/A· v3 9.3 HIGH· v2 Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet. |
5Canonical FedoraprojectLibreoffice+2 more7Enterprise Linux Desktop Enterprise Linux ServerEnterprise Linux Workstation+4 moreMay 6, 2026 Jul 3, 2014 N/A· v4 N/A· v3 10.0 HIGH· v2 LibreOffice 4.2.4 executes unspecified VBA macros automatically, which has unspecified impact and attack vectors, possibly related to doc/docmacromode.cxx. |
2Libreoffice Sun2Libreoffice Openoffice.orgApr 29, 2026 Nov 19, 2012 N/A· v4 N/A· v3 4.3 MEDIUM· v2 LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org (OOo), allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted (1) odt file to vcllo.dll, (2) ODG (Drawing...Show more |
5Apache CanonicalDebian+2 more11Debian Linux Enterprise LinuxEnterprise Linux Desktop+8 moreApr 29, 2026 Aug 6, 2012 N/A· v4 N/A· v3 7.5 HIGH· v2 Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitr...Show more |
5Apache DebianFedoraproject+2 more10Debian Linux Enterprise LinuxEnterprise Linux Desktop+7 moreApr 29, 2026 Jun 21, 2012 N/A· v4 N/A· v3 7.5 HIGH· v2 Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (application crash) and possibly ex...Show more |
2Apache Libreoffice2Libreoffice Openoffice.orgApr 29, 2026 Jun 19, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (crash) and possibly...Show more |
6Apache DebianFedoraproject+3 more13Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+10 moreApr 29, 2026 Jun 17, 2012 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via...Show more |
2Libreoffice Sun2Libreoffice Openoffice.orgApr 29, 2026 Oct 21, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 oowriter in OpenOffice.org 3.3.0 and LibreOffice before 3.4.3 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted DOC file that triggers an out-of-bounds read in the DOC sprm parser. |
Stack-based buffer overflow in the Lotus Word Pro import filter in LibreOffice before 3.3.3 allows remote attackers to execute arbitrary code via a crafted .lwp file. |