CVE-2025-14714

15.12.2025, 11:15

An Authentication Bypass vulnerability existed where the application bundled an interpreter (Python) that inherits the Transparency, Consent, and Control (TCC) permissionsgranted by the user to the main application bundle

By executing the bundled interpreter directly the attacker's scripts run with the application's TCCprivileges

In fixed versions parent-constraints are used to allow only the main application to launch interpreter with those permissions

This issue affects LibreOffice on macOS: from 25.2 before < 25.2.4.

Provider	Type	Base Score	Vector
NIST	NIST	UNKNOWN	---
Document Fdn.	CNA	---	---
CISA-ADP	ADP	---	---

Base Score

CVSS 3.x

EPSS Score

Percentile: 2%

Debian Releases

Debian Product

Codename

libreoffice

bullseye	1:7.0.4-4+deb11u10 fixed
bullseye (security)	1:7.0.4-4+deb11u13 fixed
bookworm	4:7.4.7-1+deb12u9 fixed
bookworm (security)	4:7.4.7-1+deb12u8 fixed
trixie	4:25.2.3-2+deb13u2 fixed
forky	4:25.8.4-1 fixed
sid	4:25.8.4-1 fixed

Common Weakness Enumeration

CWE-288 - Authentication Bypass Using an Alternate Path or Channel
A product requires authentication, but the product has an alternate path or channel that does not require authentication.

References

https://www.libreoffice.org/about-us/security/advisories/cve-2025-14714