#VU19223 Code Injection in LibreOffice


Published: 2021-06-17

Vulnerability identifier: #VU19223

Vulnerability risk: High

CVSSv3.1: 8.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C]

CVE-ID: CVE-2019-9848

CWE-ID: CWE-94

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
LibreOffice
Client/Desktop applications / Office applications

Vendor: LibreOffice

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to improper input validation in LibreLogo component, bundled with LibreOffice application. A remote attacker can create a specially crafted document, trick the victim into opening it and execute arbitrary python code on the target system without displaying any warnings.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

LibreOffice: 6.2.4.1 - 6.2.4.2, 6.2.0.0 - 6.2.0.3, 6.2.3.1 - 6.2.3.2, 6.2.2.1 - 6.2.2.2, 6.2.1.1 - 6.2.1.2

External links
http://www.libreoffice.org/about-us/security/advisories/cve-2019-9848/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.


Latest bulletins with this vulnerability


Red Hat Enterprise Linux 7 update for libreoffice
OpenSUSE Linux update for libreoffice
OpenSUSE Linux update for libreoffice
Arch Linux update for libreoffice-still
Gentoo update for LibreOffice
Arch Linux update for libreoffice-fresh
Debian update for libreoffice
Multiple vulnerabilities in LibreOffice
Code Injection in libreoffice (Alpine package)