VYPR
Unrated severityNVD Advisory· Published Oct 11, 2021· Updated Aug 4, 2024

Double Certificate Attack

CVE-2021-41830

Description

It is possible for an attacker to manipulate signed documents and macros to appear to come from a trusted source. All versions of Apache OpenOffice up to 4.1.10 are affected. Users are advised to update to version 4.1.11. See CVE-2021-25633 for the LibreOffice advisory.

Affected products

2
  • Apache/Openofficellm-fuzzy2 versions
    <=4.1.10+ 1 more
    • (no CPE)range: <=4.1.10
    • (no CPE)range: Apache OpenOffice

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.