High severity8.8NVD Advisory· Published May 3, 2021· Updated Jun 17, 2026
CVE-2021-25631
CVE-2021-25631
Description
In the LibreOffice 7-1 series in versions prior to 7.1.2, and in the 7-0 series in versions prior to 7.0.5, the denylist can be circumvented by manipulating the link so it doesn't match the denylist but results in ShellExecute attempting to launch an executable type.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <7.1.2, <7.0.5
- Range: 7.1
Patches
Vulnerability mechanics
References
2- positive.security/blog/url-open-rcenvdExploitThird Party Advisory
- www.libreoffice.org/about-us/security/advisories/cve-2021-25631/nvdVendor Advisory
News mentions
0No linked articles in our index yet.