Two critical vulnerabilities in LibreOffice (CVE-2024-12425 and CVE-2024-12426) expose millions of users to file system manipulation and sensitive data extraction attacks. These flaws affect both desktop users opening malicious documents and server-side systems using LibreOffice for headless document processing. CVE-2024-12425: Path Traversal Enables Arbitrary File Writes The first vulnerability stems from improper path sanitization when […] The post LibreOffice Vulnerabilities Allow Attackers to Write to Files and Extract Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
First seen on gbhackers.com
Jump to article: gbhackers.com/libreoffice-vulnerabilities/
