CVE-2023-6186
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Dec 11, 2023
Updated: Dec 31, 2023
CWE ID 281
Summary
CVE-2023-6186 is a vulnerability affecting The Document Foundation's LibreOffice. This issue involves insufficient macro permission validation, allowing attackers to execute built-in macros without user warning. Hyperlinks with macro targets can trigger these malicious macros in affected versions, posing a significant security risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Debian
- Fedora Operating System
- LibreOffice
Affected Vendors
- Debian
- The Document Foundation
- Fedora Project