公告ID: KYLIN-2018-16858
安全等级: 中等
产品: Kylin V3
发布日期: 2019年2月1日
CVE: CVE-2018-16858
CVSS3评分: 7.8
概述:
None 描述:
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. It was found that libreoffice was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. An attacker could craft a document, which when opened by LibreOffice, would execute a Python method from a script in any arbitrary file system location, specified relative to the LibreOffice install location. 系统版本:
KYLIN 3.2.x
KYLIN 3.3.x
受影响包列表:
libreoffice
libreoffice