CVE-2018-6871

high-risk
Published 2018-02-09

LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function.

Do I need to act?

!
30.1% chance of exploitation in next 30 days
EPSS score — higher than 70% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
44022
+
Fix available
Upgrade to: 79c9829dd5d8054ec39a82dc51cd9eff340dbee8
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (20)

Affected Vendors

Debian Redhat Canonical Libreoffice

References (16)

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:0418
Third Party Advisory https://access.redhat.com/errata/RHSA-2018:0517
Patch https://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-5-4-5&id=a91...
Exploit https://github.com/jollheef/libreoffice-remote-arbitrary-file-disclosure
Third Party Advisory https://usn.ubuntu.com/3579-1/
Third Party Advisory https://www.debian.org/security/2018/dsa-4111
Exploit https://www.exploit-db.com/exploits/44022/
Vendor Advisory https://www.libreoffice.org/about-us/security/advisories/cve-2018-1055/
Third Party Advisory https://access.redhat.com/errata/RHSA-2018:0418
Third Party Advisory https://access.redhat.com/errata/RHSA-2018:0517
Patch https://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-5-4-5&id=a91...
Exploit https://github.com/jollheef/libreoffice-remote-arbitrary-file-disclosure
Third Party Advisory https://usn.ubuntu.com/3579-1/
Third Party Advisory https://www.debian.org/security/2018/dsa-4111
Exploit https://www.exploit-db.com/exploits/44022/
Vendor Advisory https://www.libreoffice.org/about-us/security/advisories/cve-2018-1055/
67
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 15/34 · Moderate
Exposure 20/34 · Moderate