CVE-2021-25635 in LibreOfficeinformation

Résumé

par MITRE • 21/03/2025

An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to self sign an ODF document, with a signature untrusted by the target, then modify it to change the signature algorithm to an invalid (or unknown to LibreOffice) algorithm and LibreOffice would incorrectly present such a signature with an unknown algorithm as a valid signature issued by a trusted person


This issue affects LibreOffice: from 7.0 before 7.0.5, from 7.1 before 7.1.1.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsable

Document Fdn.

Réserver

19/01/2021

Divulgation

21/03/2025

Modérer

accepté

Entrée

VDB-300597

CPE

prêt

EPSS

0.00135

KEV

non

Activités

très faible

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!