CVE-2025-64407

EPSS 0.18%
Veröffentlicht 12.11.2025 09:12:48
Zuletzt bearbeitet 13.11.2025 17:15:50
Quelle security@apache.org
CVE-Watchlists
Login
Unerledigt
Login

Apache OpenOffice: URL fetching can be used to exfiltrate arbitrary INI file values and environment variables

Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache OpenOffice allowed an attacker to craft a document that would cause external links 
to be loaded without prompt. Such links could also be used to transmit system information, such as environment variables or configuration settings.

In the affected versions of Apache OpenOffice, documents that used a certain URI scheme linking to external files would 
load the contents of such files without prompting the user for 
permission to do so. Such URI scheme allows to include system configuration data, that is not supposed to be transmitted externally.

This issue affects Apache OpenOffice: through 4.1.15.

Users are recommended to upgrade to version 4.1.16, which fixes the issue.





The LibreOffice suite reported this issue as CVE-2024-12426.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Apache ≫ Openoffice Version < 4.1.16

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.18%	0.387

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-201 Insertion of Sensitive Information Into Sent Data

The code transmits data to another actor, but a portion of the data includes sensitive information that should not be accessible to that actor.

CWE-862 Missing Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

https://www.openoffice.org/security/cves/CVE-2025-64407.html

Vendor Advisory

https://lists.apache.org/thread/4yg1gv71f14fw4ky4ds50o6xjq49594g

Vendor Advisory

Mailing List

https://nvd.nist.gov/vuln/detail/CVE-2025-64407

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-64407

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-64407

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-64407