Every CVE whose affected-product data names Apache Openoffice, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (60)
CVE-2009-3302 — CVSS 9.3 (critical): filter/ww8/ww8par2.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or…
CVE-2010-0136 — CVSS 9.3 (critical): OpenOffice.org (OOo) 2.0.4, 2.4.1, and 3.1.1 does not properly enforce Visual Basic for Applications (VBA) macro security settings, which…
CVE-2010-4253 — CVSS 9.3 (critical): Heap-based buffer overflow in Impress in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service…
CVE-2009-2950 — CVSS 9.3 (critical): Heap-based buffer overflow in the GIFLZWDecompressor::GIFLZWDecompressor function in filter.vcl/lgif/decode.cxx in OpenOffice.org (OOo)…
CVE-2010-4643 — CVSS 9.3 (critical): Heap-based buffer overflow in Impress in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service…
CVE-2009-3301 — CVSS 9.3 (critical): Integer underflow in filter/ww8/ww8par2.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service…
CVE-2009-2949 — CVSS 9.3 (critical): Integer overflow in the XPMReader::ReadXPM function in filter.vcl/ixpm/svt_xpmread.cxx in OpenOffice.org (OOo) before 3.2 allows remote…
CVE-2014-3524 — CVSS 9.3 (critical): Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a…
CVE-2007-2834 — CVSS 9.3 (critical): Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows…
CVE-2010-0395 — CVSS 9.3 (critical): OpenOffice.org 2.x and 3.0 before 3.2.1 allows user-assisted remote attackers to bypass Python macro security restrictions and execute…
CVE-2010-3450 — CVSS 9.3 (critical): Multiple directory traversal vulnerabilities in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allow remote attackers to overwrite arbitrary…
CVE-2010-3451 — CVSS 9.3 (critical): Use-after-free vulnerability in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of…
CVE-2010-3452 — CVSS 9.3 (critical): Use-after-free vulnerability in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of…
CVE-2010-3453 — CVSS 9.3 (critical): The WW8ListManager::WW8ListManager function in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle an…
CVE-2010-3454 — CVSS 9.3 (critical): Multiple off-by-one errors in the WW8DopTypography::ReadFromMem function in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allow…
CVE-2022-37401 — CVSS 8.8 (high): Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. The stored passwords are…
CVE-2022-37400 — CVSS 8.8 (high): Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. The stored passwords are…
CVE-2021-30245 — CVSS 8.8 (high): The project received a report that all versions of Apache OpenOffice through 4.1.8 can open non-http(s) hyperlinks. The problem has existed…
CVE-2023-47804 — CVSS 8.8 (high): Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments. Several URI Schemes are defined for this…
CVE-2025-64403 — CVSS 8.1 (high): Apache OpenOffice Calc spreadsheet can contain links to other files, in the form of "external data sources". A missing Authorization…
CVE-2016-6804 — CVSS 7.8 (high): The Apache OpenOffice installer (versions prior to 4.1.3, including some branded as OpenOffice.org) for Windows contains a defective…
CVE-2017-12608 — CVSS 7.8 (high): A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to…
CVE-2017-9806 — CVSS 7.8 (high): A vulnerability in the OpenOffice Writer DOC file parser before 4.1.4, and specifically in the WW8Fonts Constructor, allows attackers to…
CVE-2008-3282 — CVSS 7.8 (high): Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1…
CVE-2011-2177 — CVSS 7.8 (high): OpenOffice.org v3.3 allows execution of arbitrary code with the privileges of the user running the OpenOffice.org suite tools.
CVE-2022-47502 — CVSS 7.8 (high): Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments. Several URI Schemes are defined for this…
CVE-2022-38745 — CVSS 7.8 (high): Apache OpenOffice versions before 4.1.14 may be configured to add an empty entry to the Java class path. This may lead to run arbitrary…
CVE-2021-33035 — CVSS 7.8 (high): Apache OpenOffice opens dBase/DBF documents and shows the contents as spreadsheets. DBF are database files with data organized in fields…
CVE-2021-28129 — CVSS 7.8 (high): While working on Apache OpenOffice 4.1.8 a developer discovered that the DEB package did not install using root, but instead used a userid…
CVE-2020-13958 — CVSS 7.8 (high): A vulnerability in Apache OpenOffice scripting events allows an attacker to construct documents containing hyperlinks pointing to an…
CVE-2018-11790 — CVSS 7.8 (high): When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the…
CVE-2016-1513 — CVSS 7.8 (high): The Impress tool in Apache OpenOffice 4.1.2 and earlier allows remote attackers to cause a denial of service (out-of-bounds read or write)…
CVE-2016-6803 — CVSS 7.8 (high): An installer defect known as an "unquoted Windows search path vulnerability" affected the Apache OpenOffice before 4.1.3 installers for…
CVE-2017-12607 — CVSS 7.8 (high): A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, allows attackers to craft malicious…
CVE-2021-41830 — CVSS 7.5 (high): It is possible for an attacker to manipulate signed documents and macros to appear to come from a trusted source. All versions of Apache…
CVE-2010-4494 — CVSS 7.5 (high): Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows…
CVE-2012-2665 — CVSS 7.5 (high): Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before…
CVE-2018-10583 — CVSS 7.5 (high): An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate…
CVE-2021-41832 — CVSS 7.5 (high): It is possible for an attacker to manipulate documents to appear to be signed by a trusted source. All versions of Apache OpenOffice up to…
CVE-2025-64401 — CVSS 7.5 (high): Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache OpenOffice allowed an attacker to craft a…
CVE-2025-64404 — CVSS 7.5 (high): Apache OpenOffice documents can contain links to other files. A missing Authorization vulnerability in Apache OpenOffice allowed an…
CVE-2025-64405 — CVSS 7.5 (high): Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache OpenOffice allowed an attacker to craft a…
CVE-2010-3689 — CVSS 6.9 (medium): soffice in OpenOffice.org (OOo) 3.x before 3.3 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain…
CVE-2015-1774 — CVSS 6.8 (medium): The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a…
CVE-2013-2189 — CVSS 6.8 (medium): Apache OpenOffice.org (OOo) before 4.0 allows remote attackers to cause a denial of service (memory corruption) or possibly have…
CVE-2015-5213 — CVSS 6.8 (medium): Integer overflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service…
CVE-2015-5214 — CVSS 6.8 (medium): LibreOffice before 4.4.6 and 5.x before 5.0.1 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service…
CVE-2013-4156 — CVSS 6.8 (medium): Apache OpenOffice.org (OOo) before 4.0 allows remote attackers to cause a denial of service (memory corruption) or possibly have…
CVE-2015-5212 — CVSS 6.8 (medium): Integer underflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2, when the configuration setting "Load printer settings…
CVE-2012-0037 — CVSS 6.5 (medium): Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and…
CVE-2021-40439 — CVSS 6.5 (medium): Apache OpenOffice has a dependency on expat software. Versions prior to 2.1.0 were subject to CVE-2013-0340 a "Billion Laughs" entity…
CVE-2025-64402 — CVSS 6.5 (medium): Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache OpenOffice allowed an attacker to craft a…
CVE-2017-3157 — CVSS 5.5 (medium): By exploiting the way Apache OpenOffice before 4.1.4 renders embedded objects, an attacker could craft a document that allows reading in a…
CVE-2021-41831 — CVSS 5.3 (medium): It is possible for an attacker to manipulate the timestamp of signed documents. All versions of Apache OpenOffice up to 4.1.10 are…
CVE-2025-64407 — CVSS 5.3 (medium): Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache OpenOffice allowed an attacker to craft a…
CVE-2010-4008 — CVSS 4.3 (medium): libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid…
CVE-2015-4551 — CVSS 4.3 (medium): LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format…
CVE-2014-3575 — CVSS 4.3 (medium): The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org (OOo) might allow remote attackers to embed arbitrary data…
CVE-2025-64406 — CVSS 4.3 (medium): An out-of-bounds Write vulnerability in Apache OpenOffice could allow an attacker to craft a document that would crash the program, or…