CVE-2014-3575
Description
The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org (OOo) might allow remote attackers to embed arbitrary data into documents via crafted OLE objects.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
9.871
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Upgrade openoffice 4.1.0 to latest version | Windows |
| Vulnerabilities CVE-2014-3524,CVE-2014-3575,CVE-2014-3693 are affected in LibreOffice (x64) 4.2.5 | Windows |
| Vulnerabilities CVE-2014-3524,CVE-2014-3575,CVE-2014-3693 are affected in LibreOffice (x64) 4.3.0 | Windows |
| Vulnerabilities CVE-2014-3524,CVE-2014-3575,CVE-2014-3693 are affected in LibreOffice 4.2.5 | Windows |
| Vulnerabilities CVE-2014-3524,CVE-2014-3575,CVE-2014-3693 are affected in LibreOffice 4.3.0 | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-335120 | Open Office (4.1.15) |
| PATCH-352296 | LibreOffice (x64) (25.8.2) |
| PATCH-352296 | LibreOffice (x64) (25.8.2) |
| PATCH-352295 | LibreOffice (25.8.2) |
| PATCH-352295 | LibreOffice (25.8.2) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234