216.73.217.30

CVE-2025-64403

· Published 12/11/2025 09:15 · Modified 13/11/2025 15:08

Labels: CVE-2025-64403 2025-11-12CVE-2025-64403CWE-862[email protected]

Essential information

Published
12/11/2025 09:15
Modified
13/11/2025 15:08
Author
Creator
CVSS
8.1 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CVSS metrics

Description

Apache OpenOffice Calc spreadsheet can contain links to other files, in the form of "external data sources". A missing Authorization vulnerability in Apache OpenOffice allowed an attacker to craft a document that would cause such links to be loaded without prompt. This issue affects Apache OpenOffice: through 4.1.15. Users are recommended to upgrade to version 4.1.16, which fixes the issue.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
apache / openoffice cpe:2.3:a:apache:openoffice:*:*:*:*:*:*:*:*

References