Openoffice

This hub aggregates every CVE we track for Openoffice, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Openoffice.

• CVE-2025-64407Apache OpenOffice: URL fetching can be used to exfiltrate arbitrary INI file values and environment variables5.3Nov 12, 2025
• CVE-2025-64406Apache OpenOffice: Possible memory corruption during CSV import4.3Nov 12, 2025
• CVE-2025-64405Apache OpenOffice: Remote documents loaded without prompt via DDE function7.5Nov 12, 2025
• CVE-2025-64404Apache OpenOffice: Remote documents loaded without prompt via background and bullet images7.5Nov 12, 2025
• CVE-2025-64403Apache OpenOffice: Remote documents loaded without prompt via "external data sources" in Calc8.1Nov 12, 2025
• CVE-2025-64402Apache OpenOffice: Remote documents loaded without prompt via OLE objects6.5Nov 12, 2025
• CVE-2025-64401Apache OpenOffice: Remote documents loaded without prompt via IFrame7.5Nov 12, 2025
• CVE-2023-47804Apache OpenOffice: Macro URL arbitrary script execution8.8Dec 29, 2023
• CVE-2022-47502Apache OpenOffice: Macro URL arbitrary script execution7.8Mar 24, 2023
• CVE-2022-38745Apache OpenOffice: Empty entry in Java class path7.8Mar 24, 2023
• CVE-2022-37401Apache OpenOffice Weak Master Keys8.8Aug 13, 2022
• CVE-2022-37400Apache OpenOffice Static Initialization Vector Allows to Recover Passwords for Web Connections Without Knowing the Master Password8.8Aug 13, 2022
• CVE-2021-41832Content Manipulation with Certificate Validation Attack7.5Oct 11, 2021
• CVE-2021-41831Timestamp Manipulation with Signature Wrapping5.3Oct 11, 2021
• CVE-2021-41830Double Certificate Attack7.5Oct 11, 2021