Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Libwpd Subscribe
Filtered by product Libwpd
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-2149 3 Apache, Libwpd, Redhat 4 Openoffice.org, Libwpd, Enterprise Linux Optional Productivity Applications and 1 more 2023-02-12 7.5 HIGH N/A
The WPXContentListener::_closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org (OOo) before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report this issue as an integer overflow.
CVE-2017-14226 2 Libreoffice, Libwpd 2 Libreoffice, Libwpd 2020-11-09 5.0 MEDIUM 7.5 HIGH
WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service (heap-based buffer over-read in the WPXTableList class in WPXTable.cpp). This vulnerability can be triggered in LibreOffice before 5.3.7. It may lead to suffering a remote attack against a LibreOffice application.