Primary

Context

LibreOffice Macro URL Arbitrary Script Execution Vulnerability

Vulnerability

Patched

A vulnerability exists in LibreOffice versions 24.8 prior to 24.8.5 and 25.2 prior to 25.2.1, allowing for arbitrary script execution via internal macros. This is achieved by constructing a link in a browser using the 'vnd.libreoffice.command' scheme, which can embed a URL that, when opened in LibreOffice, executes macros with specified arguments. This issue arises from the integration of LibreOffice with MS SharePoint, where the additional URI scheme could be exploited to bypass normal macro execution controls.

Impact

Exploitation of this vulnerability allows for arbitrary execution of macros in LibreOffice, potentially leading to unauthorized actions or changes within the application, depending on the nature of the executed macros.

Remediation

Users are advised to upgrade to LibreOffice versions 24.8.5 or 25.2.1.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

LibreOffice Macro URL Arbitrary Script Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

LibreOffice

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating