漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Apache OpenOffice: Macro URL arbitrary script execution
Vulnerability Description
Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments. Several URI Schemes are defined for this purpose. Links can be activated by clicks, or by automatic document events. The execution of such links must be subject to user approval. In the affected versions of OpenOffice, approval for certain links is not requested; when activated, such links could therefore result in arbitrary script execution. This is a corner case of CVE-2022-47502.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Apache OpenOffice 安全漏洞
Vulnerability Description
Apache OpenOffice是美国阿帕奇(Apache)基金会的一款开源的办公软件套件。该套件包含文本文档、电子表格、演示文稿、绘图、数据库等。 Apache OpenOffice 4.1.14及之前版本存在安全漏洞,该漏洞源于允许攻击者使用任意参数调用内部宏的链接并执行任意脚本。
CVSS Information
N/A
Vulnerability Type
N/A