SecAlerts
CVE ListPricingSign Up
libreoffice logo

libreoffice

Security Risk Profile

57
/100
medium

Security Risk Score

Comprehensive risk assessment based on 71 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from July 21, 2011 to present

71
Total CVEs
45
Critical+High
0
Exploited
15
Unpatched

Threat Assessment

Avg CVSS
7.5
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
15
Critical/High
Risk Level
57/100
medium

Severity Distribution

Critical
20
High
25
Medium
25
Low
1

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
5

Age Distribution

Common Weaknesses (CWE)

1
Buffer Overflow
15
2
Input Validation
12
3
Infoleak
6
4
Path Traversal
5
5
Integer Overflow
4

Most Affected Products

1. LibreOffice Libreoffice185
2. Canonical Ubuntu Linux61
3. Debian Debian Linux59
4. debian/libreoffice28
5. Fedoraproject Fedora24

Recent Vulnerabilities

See more →
CVE-2026-4430
CVSS 5.4medium

Heap Buffer Overflow in AgileEngine

5/7/2026
CVE-2025-14714
CVSS 6.5medium

TCC Bypass via Inherited Permissions in Bundled Interpreter

12/15/2025🔧 No Patch
CVE-2025-2866
CVSS 5.5medium

PDF signature forgery with adbe.pkcs7.sha1 SubFilter

4/27/2025
CVE-2021-25635
CVSS 5.5medium

Content Manipulation with Certificate Validation Attack

3/21/2025🔧 No Patch
CVE-2025-1080
CVSS 7.8high

Macro URL arbitrary script execution

3/4/2025
CVE-2025-0514
CVSS 7.8high

Executable hyperlink Windows path targets executed unconditionally on activation

2/25/2025🔧 No Patch
CVE-2024-12426
CVSS 6.7medium

URL fetching can be used to exfiltrate arbitrary INI file values and environment variables

1/7/2025
CVE-2024-12425
CVSS 3.3low

Path traversal leading to arbitrary .ttf file write

1/7/2025
CVE-2024-7788
CVSS 7.8EPSS 0%high

Signatures in "repair mode" should not be trusted

9/17/2024
CVE-2024-6472
CVSS 7.8EPSS 0%high

Ability to trust not validated macro signatures removed in high security mode

8/5/2024

Monitor libreoffice in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.