CVE-2018-6871

LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
libreofficelibreoffice
𝑥
< 5.4.5
libreofficelibreoffice
6.0.0
libreofficelibreoffice
6.0.0:alpha1
libreofficelibreoffice
6.0.0:beta1
libreofficelibreoffice
6.0.0:beta2
debiandebian_linux
9.0
canonicalubuntu_linux
14.04
canonicalubuntu_linux
16.04
canonicalubuntu_linux
17.10
redhatenterprise_linux_desktop
6.0
redhatenterprise_linux_desktop
7.0
redhatenterprise_linux_server
6.0
redhatenterprise_linux_server
7.0
redhatenterprise_linux_server_aus
7.4
redhatenterprise_linux_server_aus
7.6
redhatenterprise_linux_server_eus
7.4
redhatenterprise_linux_server_eus
7.5
redhatenterprise_linux_server_eus
7.6
redhatenterprise_linux_server_tus
7.4
redhatenterprise_linux_server_tus
7.6
redhatenterprise_linux_workstation
6.0
redhatenterprise_linux_workstation
7.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libreoffice
bullseye
1:7.0.4-4+deb11u10
fixed
wheezy
not-affected
bullseye (security)
1:7.0.4-4+deb11u11
fixed
bookworm
4:7.4.7-1+deb12u4
fixed
bookworm (security)
4:7.4.7-1+deb12u5
fixed
sid
4:24.8.2-2
fixed
trixie
4:24.8.2-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libreoffice
artful
Fixed 1:5.4.5-0ubuntu0.17.10.1
released
xenial
Fixed 1:5.1.6~rc2-0ubuntu1~xenial3
released
trusty
Fixed 1:4.2.8-0ubuntu5.3
released
References
https://access.redhat.com/errata/RHSA-2018:0418
https://access.redhat.com/errata/RHSA-2018:0517
https://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-5-4-5&id=a916fc0c0e0e8b10cb4158fa0fa173fe205d434a
https://github.com/jollheef/libreoffice-remote-arbitrary-file-disclosure
https://usn.ubuntu.com/3579-1/
https://www.debian.org/security/2018/dsa-4111
https://www.exploit-db.com/exploits/44022/
https://www.libreoffice.org/about-us/security/advisories/cve-2018-1055/
https://access.redhat.com/errata/RHSA-2018:0418
https://access.redhat.com/errata/RHSA-2018:0517
https://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-5-4-5&id=a916fc0c0e0e8b10cb4158fa0fa173fe205d434a
https://github.com/jollheef/libreoffice-remote-arbitrary-file-disclosure
https://usn.ubuntu.com/3579-1/
https://www.debian.org/security/2018/dsa-4111
https://www.exploit-db.com/exploits/44022/
https://www.libreoffice.org/about-us/security/advisories/cve-2018-1055/