CVE-2025-0514

High CVSS: 7.2

Improper Input Validation vulnerability in The Document Foundation LibreOffice allows Windows Executable hyperlink targets to be executed unconditionally on activation.This issue affects LibreOffice: from 24.8 before < 24.8.5.

Vendor

Libreoffice

Product

Libreoffice

CWE

CWE-20

Yayın Tarihi

2025-02-25 22:15:14

Güncelleme

2025-12-10 19:21:24

Source Identifier

security@documentfoundation.org

KEV Date Added

Kategoriler

CWE-20 Libreoffice HIGH Libreoffice 2025

Referanslar

https://www.libreoffice.org/about-us/security/advisories/cve-2025-0514

Benzer Kayıtlar

Low

CVE-2025-14714

An Authentication Bypass vulnerability existed where the application bundled an interpreter (Python) that inherits the T…

Low

CVE-2025-2866

Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper…

Medium

CVE-2021-25635

An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to self sign an ODF document, with…

High

CVE-2025-1080

LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An addit…

Medium

CVE-2024-12426

Exposure of Environmental Variables and arbitrary INI file values to an Unauthorized Actor vulnerability in The Document…

Low

CVE-2024-12425

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in The Document Foundation…