Eike Rathke

**Name of the Vulnerable Software and Affected Versions** LibreOffice versions 7.4.0 through 7.4.5 LibreOffice versions 7.5.0 through 7.5.0 **Description** The issue is related to an improper validation of array index in the spreadsheet component, allowing an attacker to craft a malicious spreadsheet document. This can cause an array index underflow when loaded, potentially leading to the execution of arbitrary code. Malformed spreadsheet formulas, such as `AGGREGATE`, can be created with fewer parameters than expected, contributing to the array index underflow. **Recommendations** For LibreOffice versions 7.4.0 through 7.4.5, update to version 7.4.6 or later. For LibreOffice versions 7.5.0 through 7.5.0, update to version 7.5.1 or later. As a temporary workaround, consider avoiding the use of the `AGGREGATE` formula in spreadsheet documents until the issue is resolved.