Unrated severityNVD Advisory· Published Aug 27, 2014· Updated May 6, 2026

CVE-2014-3575

Description

The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org (OOo) might allow remote attackers to embed arbitrary data into documents via crafted OLE objects.

Affected products

Apache/Openoffice
cpe:2.3:a:apache:openoffice:*:*:*:*:*:*:*:*
Range: <4.1.1
Libreoffice/Libreoffice
cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*
Range: <4.2.6
Red Hat/Enterprise Linux Desktop
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Workstation
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blog.documentfoundation.org/2014/08/28/libreoffice-4-3-1-fresh-announced/nvdVendor Advisory
lists.fedoraproject.org/pipermail/package-announce/2014-September/137657.htmlnvdMailing ListThird Party Advisory
rhn.redhat.com/errata/RHSA-2015-0377.htmlnvdThird Party Advisory
www.openoffice.org/security/cves/CVE-2014-3575.htmlnvdVendor Advisory
www.securityfocus.com/bid/69354nvdBroken LinkThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1030754nvdBroken LinkThird Party AdvisoryVDB Entry
exchange.xforce.ibmcloud.com/vulnerabilities/95420nvdThird Party AdvisoryVDB Entry
security.gentoo.org/glsa/201603-05nvdThird Party Advisory
archives.neohapsis.com/archives/bugtraq/2014-08/0115.htmlnvdBroken Link
secunia.com/advisories/59600nvdBroken Link
secunia.com/advisories/59877nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000