cbcvebase.
CVE-2019-9849
published 2019-07-17

CVE-2019-9849: LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default…

PriorityP425medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
EPSS
3.09%
86.1th percentile
LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to disable LibreOffice's ability to include remote resources within a document. A flaw existed where bullet graphics were omitted from this protection prior to version 6.2.5. This issue affects: Document Foundation LibreOffice versions prior to 6.2.5.

Affected

17 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debianlibreoffice< libreoffice 1:6.3.0~rc1-1 (bookworm)libreoffice 1:6.3.0~rc1-1 (bookworm)
document_foundationlibreoffice>= unspecified < 6.2.56.2.5
fedoraprojectfedora
fedoraprojectfedora
libreofficelibreoffice< 6.2.56.2.5
libreofficelibreoffice>= 0 < 1:6.3.0~rc1-11:6.3.0~rc1-1
libreofficelibreoffice>= 0 < 1:6.3.0~rc1-11:6.3.0~rc1-1
libreofficelibreoffice>= 0 < 1:6.3.0~rc1-11:6.3.0~rc1-1
libreofficelibreoffice>= 0 < 1:6.3.0~rc1-11:6.3.0~rc1-1
libreofficelibreoffice>= 0 < 1:5.1.6~rc2-0ubuntu1~xenial81:5.1.6~rc2-0ubuntu1~xenial8
libreofficelibreoffice>= 0 < 1:6.0.7-0ubuntu0.18.04.81:6.0.7-0ubuntu0.18.04.8
opensuseleap
opensuseleap

CVSS provenance

nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
osv9.8CRITICAL
vendor_ubuntu9.8CRITICAL
vendor_debian4.3MEDIUM
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.