Command Injection Vulnerability in Apache OpenOffice Spreadsheet
CVE-2014-3524

Currently unrated

Key Information:

Vendor: Apache
Status: Openoffice
Vendor: CVE Published:; 26 August 2014

Summary

A vulnerability in Apache OpenOffice allows remote attackers to execute arbitrary commands through crafted Calc spreadsheet files. This security flaw can lead to potential unauthorized control over affected systems, highlighting the importance of updating to secure versions and being vigilant against malicious files.

References

http://www.securityfocus.com/bid/69351

vdb-entryx_refsource_BID

http://secunia.com/advisories/60235

third-party-advisoryx_refsource_SECUNIA

http://blog.documentfoundation.org/2014/08/28/libreoffice...

x_refsource_CONFIRM

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 26, 2014
Vulnerability Reserved
May 14, 2014