Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-12803

ODF documents can contain forms to be filled out by the user. Similar to HTML forms, the contained form data can be submitted to a URI, for example, to an external web server. To create submittable forms, ODF implements the XForms W3C standard, which allows data to be submitted without the need for macros or other active scripting Prior to version 6.4.4 LibreOffice allowed forms to be submitted to any URI, including file: URIs, enabling form submissions to overwrite local files. User-interaction is required to submit the form, but to avoid the possibility of malicious documents engineered to maximize the possibility of inadvertent user submission this feature has now been limited to http[s] URIs, removing the possibility to overwrite local files. This issue affects: The Document Foundation LibreOffice versions prior to 6.4.4.

Published

2020-06-08T16:15:10.057

Last Modified

2024-11-21T05:00:19.277

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	libreoffice	libreoffice	< 6.4.4	Yes
Operating System	opensuse	leap	15.1	Yes
Operating System	fedoraproject	fedora	31	Yes

References

http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00042.html Broken Link ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00058.html Broken Link ([email protected])
https://lists.debian.org/debian-lts-announce/2023/12/msg00026.html ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PQIBAKXD7VO5IGBD7ZMH3GGBNR5R2IOA/ ([email protected])
https://www.libreoffice.org/about-us/security/advisories/CVE-2020-12803 Vendor Advisory ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00042.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00058.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2023/12/msg00026.html (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PQIBAKXD7VO5IGBD7ZMH3GGBNR5R2IOA/ (af854a3a-2127-422b-91ae-364da2661108)
https://www.libreoffice.org/about-us/security/advisories/CVE-2020-12803 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)