CVE-2025-2866
published 2025-04-27CVE-2025-2866: Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation. In the affected versions of…
PriorityP423medium5.5CVSS 3.1
AVLACLPRNUIRSUCNIHAN
EPSS
0.10%
0.9th percentile
Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation.
In the affected versions of LibreOffice a flaw in the verification code for adbe.pkcs7.sha1 signatures could cause invalid signatures to be accepted as valid
This issue affects LibreOffice: from 24.8 before < 24.8.6, from 25.2 before < 25.2.2.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libreoffice | < libreoffice 4:7.4.7-1+deb12u8 (bookworm) | libreoffice 4:7.4.7-1+deb12u8 (bookworm) |
| libreoffice | libreoffice | — | — |
| libreoffice | libreoffice | — | — |
| libreoffice | libreoffice | >= 0 < 1:7.0.4-4+deb11u13 | 1:7.0.4-4+deb11u13 |
| libreoffice | libreoffice | >= 0 < 4:7.4.7-1+deb12u8 | 4:7.4.7-1+deb12u8 |
| libreoffice | libreoffice | >= 0 < 4:25.2.2-1 | 4:25.2.2-1 |
| libreoffice | libreoffice | >= 0 < 4:25.2.2-1 | 4:25.2.2-1 |
| libreoffice | libreoffice | >= 24.8.0.1 < 24.8.6.0 | 24.8.6.0 |
| libreoffice | libreoffice | >= 25.2.0.1 < 25.2.2 | 25.2.2 |
| the_document_foundation | libreoffice | >= 24.8 < < 24.8.6 | < 24.8.6 |
| the_document_foundation | libreoffice | >= 25.2 < < 25.2.2 | < 25.2.2 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
nvdv4.02.4LOWCVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv2.4LOW
vendor_debian2.4LOW
vendor_redhat2.4LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
CVE-2025-2866: Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation
osv·2025-04-27·CVSS 2.4
CVE-2025-2866 [LOW] CVE-2025-2866: Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation
Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation. In the affected versions of LibreOffice a flaw in the verification code for adbe.pkcs7.sha1 signatures could cause invalid signatures to be accepted as valid This issue affects LibreOffice: from 24.8 before < 24.8.6, from 25.2 before < 25.2.2.
GHSA
GHSA-22mj-r7hq-f9h2: Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation
ghsa_unreviewed·2025-04-27
CVE-2025-2866 [LOW] CWE-347 GHSA-22mj-r7hq-f9h2: Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation
Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation.
In the affected versions of LibreOffice a flaw in the verification code for adbe.pkcs7.sha1 signatures could cause invalid signatures to be accepted as valid
This issue affects LibreOffice: from 24.8 before < 24.8.6, from 25.2 before < 25.2.2.
Ubuntu
LibreOffice vulnerability
vendor_ubuntu·2025-05-08
CVE-2025-2866 LibreOffice vulnerability
Title: LibreOffice vulnerability
Summary: LibreOffice could accept fraudulent digital signatures.
Juraj Šarinay discovered that LibreOffice incorrectly handled verifying
PDF signatures. A remote attacker could possibly use this issue to
generate PDF files that appear to have a valid signature.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
LibreOffice: PDF signature forgery with adbe.pkcs7.sha1 SubFilter
vendor_redhat·2025-04-27·CVSS 2.4
CVE-2025-2866 [LOW] CWE-347 LibreOffice: PDF signature forgery with adbe.pkcs7.sha1 SubFilter
LibreOffice: PDF signature forgery with adbe.pkcs7.sha1 SubFilter
Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation.
In the affected versions of LibreOffice a flaw in the verification code for adbe.pkcs7.sha1 signatures could cause invalid signatures to be accepted as valid
This issue affects LibreOffice: from 24.8 before < 24.8.6, from 25.2 before < 25.2.2.
A flaw was found in LibreOffice related to cryptographic signature verification in PDFs. This vulnerability allows attackers to spoof digital signatures, possibly leading to misleading or falsified documents and potentially affecting trust in digitally signed PDFs.
Mitigation: Users should apply security updates to mitigate the risk.
Package: libreoffi
Debian
CVE-2025-2866: libreoffice - Improper Verification of Cryptographic Signature vulnerability in LibreOffice al...
vendor_debian·2025·CVSS 2.4
CVE-2025-2866 [LOW] CVE-2025-2866: libreoffice - Improper Verification of Cryptographic Signature vulnerability in LibreOffice al...
Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation. In the affected versions of LibreOffice a flaw in the verification code for adbe.pkcs7.sha1 signatures could cause invalid signatures to be accepted as valid This issue affects LibreOffice: from 24.8 before < 24.8.6, from 25.2 before < 25.2.2.
Scope: local
bookworm: resolved (fixed in 4:7.4.7-1+deb12u8)
bullseye: resolved (fixed in 1:7.0.4-4+deb11u13)
forky: resolved (fixed in 4:25.2.2-1)
sid: resolved (fixed in 4:25.2.2-1)
trixie: resolved (fixed in 4:25.2.2-1)
No detection rules found.
No public exploits indexed.
2025-04-27
Published