VDB
CVE-2023-6186
CVE-2023-6186
PUBLISHED
Es besteht eine Schwachstelle in LibreOffice. Dieser Fehler besteht aufgrund eines unzureichenden Schutzes gegen Makros in typischen gängigen Protokollen wie http/https-Hyperlinks. Ein Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.
EPSS 0.99% · 77.2th percentile
Risk Scores
EPSS Score
0.99%
77.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | |
| RESF | RESF Rocky Linux | |
| Gentoo | Gentoo Linux | |
| Ubuntu | Ubuntu Linux | |
| Amazon | Amazon Linux 2 | |
| Oracle | Oracle Linux | |
| SUSE | SUSE Linux | |
| Red Hat | Red Hat Enterprise Linux |
Timeline
- Jan 21, 1970 Distribution Patch
- Jan 21, 1970 Security Advisory
- Dec 11, 2023 CVE Published
- Dec 12, 2023 EPSS Score
- Jan 1, 2024 PoC Published
- Jan 10, 2024 EPSS Score
- Feb 9, 2024 EPSS Score
- Mar 9, 2024 EPSS Score
- Apr 7, 2024 EPSS Score
- Jun 5, 2024 EPSS Score
- Jul 4, 2024 EPSS Score
- Aug 2, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-3097.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-3097 advisory
- https://www.libreoffice.org/about-us/security/advisories/cve-2023-6185/ advisory
- https://www.libreoffice.org/about-us/security/advisories/cve-2023-6186/ advisory
- https://www.debian.org/security/2023/dsa-5574 advisory
- https://ubuntu.com/security/notices/USN-6546-1 advisory
- https://ubuntu.com/security/notices/USN-6546-2 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-December/017502.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-December/017570.html advisory
- https://lists.debian.org/debian-lts-announce/2023/12/msg00026.html advisory
- https://security.gentoo.org/glsa/202402-29 advisory
- https://access.redhat.com/errata/RHSA-2024:1425 advisory
- https://access.redhat.com/errata/RHSA-2024:1423 advisory
- https://access.redhat.com/errata/RHSA-2024:1427 advisory
- https://linux.oracle.com/errata/ELSA-2024-1427.html advisory
- https://access.redhat.com/errata/RHSA-2024:1473 advisory
- https://access.redhat.com/errata/RHSA-2024:1480 advisory
- https://access.redhat.com/errata/RHSA-2024:1514 advisory
- https://errata.build.resf.org/RLSA-2024:1514 advisory
- https://access.redhat.com/errata/RHSA-2024:1513 advisory
…and 9 more