You searched for "https://miraridoctor.com/"
*Title:* Macro URL arbitrary script execution *Announced:* October 11, 2022 *Fixed in:* LibreOffice 7.3.6/7.4.1 *Description*: LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server....
Read more about "CVE-2022-3140"...*Title:* Array Index UnderFlow in Calc Formula Parsing *Announced:* May 24, 2023 *Fixed in:* LibreOffice 7.4.6/7.5.2 *Description*: The Spreadsheet module of LibreOffice supports various formulas that take multiple parameters. The...
Read more about "CVE-2023-0950"...*Title:* CVE-2023-2255 Remote documents loaded without prompt via IFrame *Announced:* May 24, 2023 *Fixed in:* LibreOffice 7.4.7/7.5.3 *Description*: LibreOffice supports "Floating Frames", similar to a html IFrame. The frames display...
Read more about "CVE-2023-2255"...*Title:* CVE-2023-6185: Improper input validation enabling arbitrary Gstreamer pipeline injection *Announced:* December 11, 2023 *Fixed in:* LibreOffice 7.5.9/7.6.3 *Description:* LibreOffice supports embedded videos in file formats via platform audio/video support....
Read more about "CVE-2023-6185"...*Title:* CVE-2024-3044: Graphic on-click binding allows unchecked script execution *Announced:* May 14, 2024 *Fixed in:* LibreOffice 7.6.7/24.2.3 *Description:* LibreOffice supports binding scripts to click events on graphics. In affected version...
Read more about "CVE-2024-3044"...*Title:* CVE-2024-7788: Signatures in "repair mode" should not be trusted *Announced:* Sep 17, 2024 *Fixed in:* LibreOffice 24.2.5 and 24.8.0 *Description:* Various file formats are based on the zip file...
Read more about "CVE-2024-7788"...*Title:* CVE-2024-12425: Path traversal leading to arbitrary .ttf file write *Announced:* Jan 7, 2025 *Fixed in:* LibreOffice 24.8.4 *Description:* Various file formats can contain embedded font files which are extracted...
Read more about "CVE-2024-12425"...*Title:* CVE-2024-12426: URL fetching can be used to exfiltrate arbitrary INI file values and environment variables *Announced:* Jan 7, 2025 *Fixed in:* LibreOffice 24.8.4 *Description:* URLs could be constructed which...
Read more about "CVE-2024-12426"...*Title:* Executable hyperlink Windows path targets executed unconditionally on activation *Announced:* February 25, 2025 *Fixed in:* LibreOffice 24.8.5 *Description*: LibreOffice has a feature where hyperlinks in a document can be...
Read more about "CVE-2025-0514"...*Title:* Macro URL arbitrary script execution *Announced:* March 4, 2025 *Fixed in:* LibreOffice 24.8.5 and 25.2.1 *Description*: LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS...
Read more about "CVE-2025-1080"...
Follow Us