CVE-2021-41830 is a vulnerability in Apache OpenOffice
Published on October 11, 2021
Double Certificate Attack
It is possible for an attacker to manipulate signed documents and macros to appear to come from a trusted source. All versions of Apache OpenOffice up to 4.1.10 are affected. Users are advised to update to version 4.1.11. See CVE-2021-25633 for the LibreOffice advisory.
Weakness Type
Improper Verification of Cryptographic Signature
The software does not verify, or incorrectly verifies, the cryptographic signature for data.
Products Associated with CVE-2021-41830
Want to know whenever a new CVE is published for Apache OpenOffice? stack.watch will email you.
Affected Versions
Apache Software Foundation Apache OpenOffice:- Version Apache OpenOffice, <= 4.1.10 is affected.
- Version OpenOffice.org, <= 3.4 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.