Apache · Apache Openoffice · CVE-2022-47502
**Name of the Vulnerable Software and Affected Versions**
Apache OpenOffice (affected versions not specified)
**Description**
The issue is related to the execution of links in Apache OpenOffice documents that can call internal macros with arbitrary arguments. Several URI Schemes are defined for this purpose. These links can be activated by clicks or by automatic document events. The execution of such links must be subject to user approval. However, in the affected versions of OpenOffice, approval for certain links is not requested, which could result in arbitrary script execution. This is due to insufficient input validation when processing arguments.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.