libreoffice (AlmaLinux:8) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:8 package libreoffice, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (9)
CVE-2023-6186 — CVSS 8.3 (high): Insufficient macro permission validation of The Document Foundation LibreOffice allows an attacker to execute built-in macros without…
CVE-2023-6185 — CVSS 8.3 (high): Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute…
CVE-2025-1080 — CVSS 7.8 (high): LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme…
CVE-2023-0950 — CVSS 7.8 (high): Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to…
CVE-2024-6472 — CVSS 7.8 (high): Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally…
CVE-2022-38745 — CVSS 7.8 (high): Apache OpenOffice versions before 4.1.14 may be configured to add an empty entry to the Java class path. This may lead to run arbitrary…
CVE-2024-3044 — CVSS 6.5 (medium): Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an attacker to create a document which…
CVE-2023-2255 — CVSS 5.3 (medium): Improper access control in editor components of The Document Foundation LibreOffice allowed an attacker to craft a document that would…
CVE-2023-1183 — CVSS 5.0 (medium): A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where…