VYPR
High severity8.3NVD Advisory· Published Dec 11, 2023· Updated Jun 17, 2026

CVE-2023-6185

CVE-2023-6185

Description

Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute arbitrary GStreamer plugins.

In affected versions the filename of the embedded video is not sufficiently escaped when passed to GStreamer enabling an attacker to run arbitrary gstreamer plugins depending on what plugins are installed on the target system.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

190

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.