CNNVD-202511-1502 Information
CNNVD ID
CNNVD-202511-1502
Related CVE
- CNNVD Published: 2025-11-12
Description (Chinese)
Apache OpenOffice是美国阿帕奇(Apache)基金会的一款开源的办公软件套件。该套件包含文本文档、电子表格、演示文稿、绘图、数据库等。 Apache OpenOffice 4.1.15及之前版本存在安全漏洞,该漏洞源于缺少授权检查,可能导致包含DDE链接的外部文件被自动加载。
Description (English)
Apache OpenOffice is an open-source office software package for the Apache Foundation in the United States. The package contains text documents, spreadsheets, presentations, drawings, databases, etc. There is a security loophole in the Apache OpenOffice 4.1.15 and earlier versions, which stems from a lack of authorized inspections and may lead to the automatic loading of external documents containing a DDE link.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
阿帕奇
Published
2025-11-12
Last Modified
2026-02-24
References
https://lists.apache.org/thread/0jjftxkcc4l9kt7jjn630hfrh2ygfcbk https://www.openoffice.org/security/cves/CVE-2025-64405.html http://www.openwall.com/lists/oss-security/2025/11/11/8 https://access.redhat.com/security/cve/cve-2025-64405
Patch
https://www.openoffice.org/download/
Share on: