Unrated severityNVD Advisory· Published Nov 10, 2015· Updated May 6, 2026
CVE-2015-4551
CVE-2015-4551
Description
LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote attackers to obtain sensitive information via a crafted document, which embeds data from local files into (1) Calc or (2) Writer.
Affected products
7cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- rhn.redhat.com/errata/RHSA-2015-2619.htmlnvdThird Party Advisory
- www.debian.org/security/2015/dsa-3394nvdThird Party Advisory
- www.libreoffice.org/about-us/security/advisories/cve-2015-4551/nvdVendor Advisory
- www.openoffice.org/security/cves/CVE-2015-4551.htmlnvdVendor Advisory
- www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.htmlnvdThird Party Advisory
- www.securityfocus.com/bid/77486nvdBroken LinkThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1034085nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1034091nvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/USN-2793-1nvdThird Party Advisory
- security.gentoo.org/glsa/201603-05nvdThird Party Advisory
- security.gentoo.org/glsa/201611-03nvdThird Party Advisory
News mentions
0No linked articles in our index yet.