Path Traversal Vulnerability in Collabora Online from Collabora
CVE-2025-27791

8.3HIGH

Key Information:

Vendor: Collaboraonline
Status: Online
Vendor: CVE Published:; 15 April 2025

Summary

Collabora Online, utilizing LibreOffice technology, presents a vulnerability wherein a path traversal flaw exists in the handling of the CheckFileInfo BaseFileName field received from WOPI servers. This security issue, found in versions prior to 24.04.12.4, 23.05.19, and 22.05.25, enables an attacker controlling a malicious WOPI server to manipulate the file write operations of Collabora Online. By exploiting this flaw alongside a DNS lookup issue, it is feasible for attackers to craft responses that could compromise the security of the files processed by Collabora Online instances. The company has released patches for the affected versions, ensuring enhanced protection against such vulnerabilities.

Affected Version(s)

online >= 24.04.1.1, < 24.04.13.1 < 24.04.1.1, 24.04.13.1

online >= 23.05.0, < 23.05.19 < 23.05.0, 23.05.19

online < 22.05.25 < 22.05.25

References

https://github.com/CollaboraOnline/online/security/adviso...

x_refsource_CONFIRM

CVSS V4

Score:

8.3

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
Apr 15, 2025
Vulnerability Reserved
Mar 6, 2025