An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=file://192.168.0.2/test.jpg within an office:document-content element in a .odt XML document.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-05-01T16:00:00

Updated: 2024-08-05T07:39:08.539Z

Reserved: 2018-05-01T00:00:00

Link: CVE-2018-10583

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-05-01T16:29:00.383

Modified: 2024-11-21T03:41:36.390

Link: CVE-2018-10583

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-05-01T00:00:00Z

Links: CVE-2018-10583 - Bugzilla