Home

CVE-2012-0037

Description

Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via a crafted XML external entity (XXE) declaration and reference in an RDF document.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.897

Associated Vulnerability

VulnerabilityOS Platform
Upgrade LibreOffice (x64) 3.5 to latest versionWindows
Upgrade libreoffice 3.5 to latest versionWindows
Vulnerabilities CVE-2011-2685,CVE-2012-0037 are affected in LibreOffice For Mac 3.3.0Mac
Vulnerabilities CVE-2011-2685,CVE-2012-0037 are affected in LibreOffice For Mac 3.3.1Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.3.2Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.3.3Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.3.4Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.4.0Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.4.1Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.4.2Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.4.5Mac
Vulnerabilities CVE-2012-0037,CVE-2012-4233 are affected in LibreOffice For Mac 3.5Mac
Vulnerabilities CVE-2012-0037 are affected in Open Office 4 for Mac 3.3Mac
Vulnerabilities CVE-2012-0037,CVE-2013-4156 are affected in Open Office 4 for Mac 3.4Mac
Vulnerabilities CVE-2012-0037,CVE-2011-2685 are affected in LibreOffice For Mac 3.3.0Mac
Vulnerabilities CVE-2012-0037,CVE-2011-2685 are affected in LibreOffice For Mac 3.3.1Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.3.2Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.3.3Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.3.4Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.4.0Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.4.1Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.4.2Mac
Vulnerabilities CVE-2012-0037 are affected in LibreOffice For Mac 3.4.5Mac
Vulnerabilities CVE-2012-0037,CVE-2012-4233 are affected in LibreOffice For Mac 3.5Mac
Raptor RDF parser and serializer library (USN-1480-1) libraptor1_1.4.21-7ubuntu0.1_i386.debLinux
Raptor RDF parser and serializer library (USN-1480-1) libraptor1_1.4.21-7ubuntu0.1_amd64.debLinux
Raptor 2 RDF syntax library (USN-1901-1) libraptor2-0_2.0.6-1ubuntu0.1_i386.debLinux
Raptor 2 RDF syntax library (USN-1901-1) libraptor2-0_2.0.6-1ubuntu0.1_amd64.debLinux
Raptor update (CESA-2012:0410) raptor-1.4.18-5.el6_2.1.i686.rpmLinux
Raptor update (CESA-2012:0410) raptor-1.4.18-5.el6_2.1.x86_64.rpmLinux
Raptor update (CESA-2012:0410) raptor-devel-1.4.18-5.el6_2.1.i686.rpmLinux
Raptor update (CESA-2012:0410) raptor-devel-1.4.18-5.el6_2.1.x86_64.rpmLinux
(RHSA-2012:0410) Important: raptor security update raptor-1.4.18-5.el6_2.1.i686.rpmLinux
(RHSA-2012:0410) Important: raptor security update raptor-1.4.18-5.el6_2.1.x86_64.rpmLinux
(RHSA-2012:0410) Important: raptor security update raptor-devel-1.4.18-5.el6_2.1.i686.rpmLinux
(RHSA-2012:0410) Important: raptor security update raptor-devel-1.4.18-5.el6_2.1.x86_64.rpmLinux
Raptor update (ELSA-2012-0410) raptor-1.4.18-5.el6_2.1.x86_64.rpmLinux
Raptor-devel update (ELSA-2012-0410) raptor-devel-1.4.18-5.el6_2.1.x86_64.rpmLinux
Raptor update (ELSA-2012-0410) raptor-1.4.18-5.el6_2.1.i686.rpmLinux
Raptor-devel update (ELSA-2012-0410) raptor-devel-1.4.18-5.el6_2.1.i686.rpmLinux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-343131LibreOffice (x64) (24.8.3)
PATCH-343130LibreOffice (24.8.3)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-606440Open Office For Mac (4.1.15)
PATCH-606440Open Office For Mac (4.1.15)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)
PATCH-611894LibreOffice for Mac (Apple Silicon) (25.8.1)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234