Description

Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice before the macro is executed. Previously if verification failed the user could fail to understand the failure and choose to enable the macros anyway. This issue affects LibreOffice: from 24.2 before 24.2.5.

INFO

Published Date :

2024-08-05T12:55:39.199Z

Last Modified :

2024-08-05T14:32:48.640Z

Source :

Document Fdn.
AFFECTED PRODUCTS

The following products are affected by CVE-2024-6472 vulnerability.

Vendors Products
Libreoffice
  • Libreoffice
Redhat
  • Enterprise Linux
  • Rhel Aus
  • Rhel E4s
  • Rhel Eus
  • Rhel Tus
The Document Foundation
  • Libreoffice
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-6472.

URL Resource
https://nvd.nist.gov/vuln/detail/CVE-2024-6472 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-6472 cve-icon
https://www.libreoffice.org/about-us/security/advisories/CVE-2024-6472 cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact