CNNVD-202511-1506 Information
CNNVD ID
CNNVD-202511-1506
Related CVE
- CNNVD Published: 2025-11-12
Description (Chinese)
Apache OpenOffice是美国阿帕奇(Apache)基金会的一款开源的办公软件套件。该套件包含文本文档、电子表格、演示文稿、绘图、数据库等。 Apache OpenOffice 4.1.15及之前版本存在安全漏洞,该漏洞源于浮动框架链接缺少授权检查,可能导致自动加载外部内容。
Description (English)
Apache OpenOffice is an open-source office software package for the Apache Foundation in the United States. The package contains text documents, spreadsheets, presentations, drawings, databases, etc. There is a security loophole in the Apache OpenOffice 4.1.15 and earlier versions, which stems from the lack of authorized access to floating frame links, which may lead to the automatic loading of external content.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
阿帕奇
Published
2025-11-12
Last Modified
2026-02-24
References
https://www.openoffice.org/security/cves/CVE-2025-64401.html https://lists.apache.org/thread/o00dtgvhr9tx8r4y8vf6y2mg7nn6mx6c https://access.redhat.com/security/cve/cve-2025-64401
Patch
https://www.openoffice.org/download/
Share on: