Unrated severityNVD Advisory· Published Jan 7, 2021· Updated Aug 4, 2024
CVE-2020-13451
CVE-2020-13451
Description
An incomplete-cleanup vulnerability in the Office rendering engine of Gotenberg through 6.2.1 allows an attacker to overwrite LibreOffice configuration files and execute arbitrary code via macros.
Affected products
2- Gotenberg/Gotenbergdescription
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/160744/Gotenberg-6.2.0-Traversal-Code-Execution-Insecure-Permissions.htmlmitrex_refsource_MISC
- github.com/thecodingmachine/gotenberg/issues/199mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.