CNNVD-202511-1503 Information
CNNVD ID
CNNVD-202511-1503
Related CVE
- CNNVD Published: 2025-11-12
Description (Chinese)
Apache OpenOffice是美国阿帕奇(Apache)基金会的一款开源的办公软件套件。该套件包含文本文档、电子表格、演示文稿、绘图、数据库等。 Apache OpenOffice 4.1.15及之前版本存在安全漏洞,该漏洞源于缺少授权检查,可能导致背景填充图像或项目符号图像的外部链接被自动加载。
Description (English)
Apache OpenOffice is an open-source office software package for the Apache Foundation in the United States. The package contains text documents, spreadsheets, presentations, drawings, databases, etc. There is a security loophole in Apache OpenOffice 4.1.15 and earlier versions, which stems from a lack of authorization to check and may result in external links to background fill images or project symbol images being automatically loaded.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
阿帕奇
Published
2025-11-12
Last Modified
2026-02-24
References
https://lists.apache.org/thread/08n4mdx0pnhqsllnkc63d27sdgq3tygc https://www.openoffice.org/security/cves/CVE-2025-64404.html http://www.openwall.com/lists/oss-security/2025/11/11/7 https://access.redhat.com/security/cve/cve-2025-64404
Patch
https://www.openoffice.org/download/
Share on: