CVE-2018-10583

An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=file://192.168.0.2/test.jpg within an office:document-content element in a .odt XML document.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
VendorProductVersion
libreofficelibreoffice
6.0.3
apacheopenoffice
4.1.5
debiandebian_linux
7.0
debiandebian_linux
8.0
debiandebian_linux
9.0
redhatenterprise_linux_desktop
7.0
redhatenterprise_linux_server
7.0
redhatenterprise_linux_workstation
7.0
canonicalubuntu_linux
14.04
canonicalubuntu_linux
16.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libreoffice
bullseye
unimportant
bullseye (security)
unimportant
bookworm
unimportant
bookworm (security)
unimportant
sid
unimportant
trixie
unimportant
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libreoffice
cosmic
not-affected
bionic
not-affected
artful
ignored
xenial
Fixed 1:5.1.6~rc2-0ubuntu1~xenial6
released
trusty
Fixed 1:4.2.8-0ubuntu5.5
released
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2020/Oct/26
http://secureyourit.co.uk/wp/2018/05/01/creating-malicious-odt-files/
https://access.redhat.com/errata/RHSA-2018:3054
https://lists.apache.org/thread.html/0598708912978b27121b2e380b44a225c706aca882cd1da6a955a0af%40%3Cdev.openoffice.apache.org%3E
https://lists.apache.org/thread.html/6c65f22306c36c95e75f8d2b7f49cfcbeb0a4614245c20934612a39d%40%3Cdev.openoffice.apache.org%3E
https://lists.apache.org/thread.html/c8fd59ac77b42aac90eb5c59b87f3ab59b5e0c3bfb4819aa649a2909%40%3Cdev.openoffice.apache.org%3E
https://security-tracker.debian.org/tracker/CVE-2018-10583
https://usn.ubuntu.com/3883-1/
https://www.exploit-db.com/exploits/44564/
http://seclists.org/fulldisclosure/2020/Oct/26
http://secureyourit.co.uk/wp/2018/05/01/creating-malicious-odt-files/
https://access.redhat.com/errata/RHSA-2018:3054
https://lists.apache.org/thread.html/0598708912978b27121b2e380b44a225c706aca882cd1da6a955a0af%40%3Cdev.openoffice.apache.org%3E
https://lists.apache.org/thread.html/6c65f22306c36c95e75f8d2b7f49cfcbeb0a4614245c20934612a39d%40%3Cdev.openoffice.apache.org%3E
https://lists.apache.org/thread.html/c8fd59ac77b42aac90eb5c59b87f3ab59b5e0c3bfb4819aa649a2909%40%3Cdev.openoffice.apache.org%3E
https://security-tracker.debian.org/tracker/CVE-2018-10583
https://usn.ubuntu.com/3883-1/
https://www.exploit-db.com/exploits/44564/