CVE-2018-10119 vulnerability in LibreOffice and Other Products
Published on April 16, 2018

sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 and 6.x before 6.0.1.1 uses an incorrect integer data type in the StgSmallStrm class, which allows remote attackers to cause a denial of service (use-after-free with write access) or possibly have unspecified other impact via a crafted document that uses the structured storage ole2 wrapper file format.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2018-10119

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-10119 are published in these products:

LibreOffice

Canonical Ubuntu Linux

Debian Linux

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Workstation

Exploit Probability

EPSS

0.55%

Percentile

67.81%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-10119 vulnerability in LibreOffice and Other ProductsPublished on April 16, 2018

Products Associated with CVE-2018-10119

Exploit Probability

CVE-2018-10119 vulnerability in LibreOffice and Other Products
Published on April 16, 2018