CVE-2018-11790
CVE-2018-11790
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado
Lifecycle
31 Jan 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation.
Affected products
Apache Software Foundation · Apache OpenOffice