Openoffice Openoffice.org — known CVE vulnerabilities
Every CVE whose affected-product data names Openoffice Openoffice.org, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2009-3570 — CVSS 10.0 (critical): Unspecified vulnerability in OpenOffice.org (OOo) has unspecified impact and remote attack vectors, as demonstrated by a certain module in…
CVE-2008-0320 — CVSS 9.3 (critical): Heap-based buffer overflow in the OLE importer in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash)…
CVE-2008-2152 — CVSS 9.3 (critical): Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org (OOo) 2.0 through 2.4 allows remote…
CVE-2008-2237 — CVSS 9.3 (critical): Heap-based buffer overflow in OpenOffice.org (OOo) 2.x before 2.4.2 allows remote attackers to execute arbitrary code via a crafted WMF…
CVE-2008-2238 — CVSS 9.3 (critical): Multiple integer overflows in OpenOffice.org (OOo) 2.x before 2.4.2 allow remote attackers to execute arbitrary code via crafted EMR…
CVE-2010-2936 — CVSS 9.3 (critical): Integer overflow in simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a…
CVE-2009-0259 — CVSS 9.3 (critical): The Word processor in OpenOffice.org 1.1.2 through 1.1.5 allows remote attackers to cause a denial of service (crash) and possibly execute…
CVE-2009-3571 — CVSS 9.3 (critical): Unspecified vulnerability in OpenOffice.org (OOo) has unknown impact and client-side attack vector, as demonstrated by a certain module in…
CVE-2010-2935 — CVSS 9.3 (critical): simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle integer values associated with…
CVE-2009-0200 — CVSS 9.3 (critical): Integer underflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute…
CVE-2009-0201 — CVSS 9.3 (critical): Heap-based buffer overflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to…
CVE-2008-3437 — CVSS 7.5 (high): OpenOffice.org (OOo) before 2.1.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute…
CVE-2007-5746 — CVSS 6.8 (medium): Integer overflow in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary…
CVE-2008-4937 — CVSS 2.6 (low): senddoc in OpenOffice.org (OOo) 2.4.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/log.obr.#####…