- Description
- Improper Input Validation vulnerability in The Document Foundation LibreOffice allows Windows Executable hyperlink targets to be executed unconditionally on activation.This issue affects LibreOffice: from 24.8 before < 24.8.5.
- Source
- security@documentfoundation.org
- NVD status
- Analyzed
- Products
- libreoffice
CVSS 4.0
- Type
- Secondary
- Base score
- 7.2
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:L/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
- security@documentfoundation.org
- CWE-20
- nvd@nist.gov
- NVD-CWE-noinfo
- Hype score
- Not currently trending
LibreOfficeの脆弱性でWindows環境で実行可能ファイルが開かれる危険性(CVE-2025-0514) #セキュリティ対策Lab #セキュリティ #Security https://t.co/eFWFyj1KpT
@securityLab_jp
2 Mar 2025
18 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
A critical flaw in LibreOffice (CVE-2025-0514) allows execution of malicious files via hyperlinks on Windows. Update to version 24.8.5 to mitigate risks. 🔒 #LibreOffice #WindowsSecurity #France link: https://t.co/IZI4Lged9E https://t.co/UzR5qNN1ld
@TweetThreatNews
1 Mar 2025
66 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Critical Vulnerability in LibreOffice Exposes Windows Users to Remote Code Execution Risk A high-severity vulnerability (CVE-2025-0514) in LibreOffice versions before 24.8.5 allows attackers to execute malicious files on Windows systems via crafted hyperlinks in documents.
@IseleyeNimi
28 Feb 2025
40 Impressions
0 Retweets
2 Likes
0 Bookmarks
1 Reply
1 Quote
🚨 Critical LibreOffice Vulnerability Alert! 🚨 A flaw (CVE-2025-0514) in LibreOffice versions before 24.8.5 allows attackers to execute malicious files on Windows systems via hyperlinks. ✅ Patch Available: Update to LibreOffice 24.8.5 now! https://t.co/L1zj583lLJ https://t.co/
@Hosainfosec
28 Feb 2025
60 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
⚠️ Vulnerability Alert: LibreOffice Flaw Could Allow Unintentional Execution of Malicious Files 📅 Timeline: Disclosure: 2025-02-25, Patch: 2025-02-25 📌 Attribution: Amel Bouziane-Leblond, Collabora Productivity, Stephen Bergman 🆔cveId: CVE-2025-0514 📊baseScore: 7.2… https:/
@syedaquib77
27 Feb 2025
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-0514 🔴 HIGH (7.2) 🏢 The Document Foundation - LibreOffice 🏗️ 24.8 🔗 https://t.co/uqXJpd3z0J #CyberCron #VulnAlert @LibreOffice https://t.co/sdGi7tmph0
@cybercronai
27 Feb 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0514: LibreOffice Flaw Could Allow Unintentional Execution of Malicious Files Discover the CVE-2025-0514 vulnerability in LibreOffice affecting versions before 24.8.5. Learn how to protect your system https://t.co/2TKZwKIVgU
@the_yellow_fall
27 Feb 2025
368 Impressions
2 Retweets
4 Likes
1 Bookmark
0 Replies
0 Quotes
CVE-2025-0514 @LibreOffice #bugbounty https://t.co/vE3aGNN1lO
@Icare1337
26 Feb 2025
239 Impressions
0 Retweets
14 Likes
0 Bookmarks
1 Reply
0 Quotes
CVE-2025-0514 Improper Input Validation vulnerability in The Document Foundation LibreOffice allows Windows Executable hyperlink targets to be executed unconditionally on activation… https://t.co/hZwpl0dmll
@CVEnew
25 Feb 2025
339 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D84D9AF-1B4C-46E6-8815-DF81A593E682",
"versionEndExcluding": "24.8.5.1",
"versionStartIncluding": "24.8.0.0"
}
],
"operator": "OR"
}
]
}
]