PT-2022-5029 · Document Foundation+9 · Libreoffice+9

Published

2022-09-15

·

Updated

2024-06-15

·

CVE-2022-3140

CVSS v2.0

10

High

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions LibreOffice versions 7.3.0 through 7.3.5 LibreOffice versions 7.4.0
Description The issue is related to the implementation of the 'vnd.libreoffice.command' scheme in LibreOffice, which allows for the execution of internal macros with arbitrary arguments. This can result in arbitrary script execution without warning when a link using this scheme is clicked on or activated by document events.
Recommendations For LibreOffice versions 7.3.0 through 7.3.5, update to version 7.3.6 to resolve the issue. For LibreOffice version 7.4.0, update to version 7.4.1 to resolve the issue. As a temporary workaround, consider disabling the use of the 'vnd.libreoffice.command' scheme to minimize the risk of exploitation.

Fix

Argument Injection

RCE

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-88CWE-20CWE-77

Related Identifiers

ALSA-2023:0089
ALSA-2023:0304
ALT-PU-2022-2618
ALT-PU-2022-2695
ALT-PU-2022-2841
ALT-PU-2022-2956
ALT-PU-2022-3174
ALT-PU-2023-1241
BDU:2022-06246
CESA-2023_0089
CVE-2022-3140
DLA-3368-1
DSA-5252-1
MGASA-2022-0400
OPENSUSE-SU-2022_3650-1
OPENSUSE-SU-2024:12452-1
RHSA-2023:0089
RHSA-2023:0304
RHSA-2023_0089
RHSA-2023_0304
RLSA-2023:0089
RLSA-2023:0304
SUSE-SU-2022:3602-1
SUSE-SU-2022:3650-1
USN-5694-1
ZDI-22-1456

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Libreoffice
Linuxmint
Red Hat
Rocky Linux
Suse
Ubuntu