CVE-2024-3044

CVE-2024-3044

Name

CVE-2024-3044

Description

Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an attacker to create a document which without prompt will execute scripts built-into LibreOffice on clicking a graphic. Such scripts were previously deemed trusted but are now deemed untrusted.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
security@documentfoundation.org	https://www.libreoffice.org/about-us/security/advisories/CVE-2024-3044
	https://lists.debian.org/debian-lts-announce/2024/05/msg00016.html
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3TU3TYDXICKPYHMCNL7ARYYBXACEAYJ4/

Type

URI

security@documentfoundation.org

https://www.libreoffice.org/about-us/security/advisories/CVE-2024-3044

https://lists.debian.org/debian-lts-announce/2024/05/msg00016.html

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3TU3TYDXICKPYHMCNL7ARYYBXACEAYJ4/