Impact
LibreOffice can import Office XML documents and, during the import of a text box element, the parser sometimes assumes a handler object is larger than it actually is. This causes a write past the end of the allocated buffer, corrupting heap memory. The overflow can potentially lead to unauthorized code execution, data disclosure or program crash. The weakness is classified as CWE-787 (Out-of-Bounds Write) and CWE-843 (Type Confusion). The vulnerability is limited to the import path and appears only when documents containing text boxes are processed.
Affected Systems
The affected product is LibreOffice from The Document Foundation. No specific version numbers are listed in the advisory; the vulnerability has been fixed in later releases but the accurate scope is unclear from the data provided.
Risk and Exploitability
The CVSS base score is 5.4, indicating moderate severity, and the EPSS score is below 1%, suggesting low probability of exploitation at this time. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires crafting a malicious OOXML file and presenting it to a user running LibreOffice; it is likely an application‑level attack with a local or user‑initiated vector. Because the vulnerability is tied to document import, an attacker would need to convince a user to open the malicious file or exploit a system that processes files without user interaction.
OpenCVE Enrichment