{"id":"CVE-2018-10583","details":"An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=file://192.168.0.2/test.jpg within an office:document-content element in a .odt XML document.","modified":"2026-04-21T07:56:45.749985711Z","published":"2018-05-01T16:29:00.383Z","related":["SUSE-SU-2018:2485-1","SUSE-SU-2018:2485-2","SUSE-SU-2018:2535-1","SUSE-SU-2018:3683-1","openSUSE-SU-2024:10983-1"],"references":[{"type":"WEB","url":"https://lists.apache.org/thread.html/0598708912978b27121b2e380b44a225c706aca882cd1da6a955a0af%40%3Cdev.openoffice.apache.org%3E"},{"type":"WEB","url":"https://lists.apache.org/thread.html/c8fd59ac77b42aac90eb5c59b87f3ab59b5e0c3bfb4819aa649a2909%40%3Cdev.openoffice.apache.org%3E"},{"type":"WEB","url":"http://seclists.org/fulldisclosure/2020/Oct/26"},{"type":"WEB","url":"https://lists.apache.org/thread.html/6c65f22306c36c95e75f8d2b7f49cfcbeb0a4614245c20934612a39d%40%3Cdev.openoffice.apache.org%3E"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:3054"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/3883-1/"},{"type":"REPORT","url":"https://security-tracker.debian.org/tracker/CVE-2018-10583"},{"type":"EVIDENCE","url":"http://secureyourit.co.uk/wp/2018/05/01/creating-malicious-odt-files/"},{"type":"EVIDENCE","url":"https://www.exploit-db.com/exploits/44564/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/libreoffice/core","events":[{"introduced":"0"},{"last_affected":"d5b4196c987210e1163445cbe86e1bb49bcf1f8b"},{"introduced":"0"},{"last_affected":"14e2671d10dd9c1d4aa9106658ce382619613581"},{"introduced":"0"},{"last_affected":"626ea4e62a3e5005fe9825923a1c0c5bdb61cc08"},{"introduced":"0"},{"last_affected":"626ea4e62a3e5005fe9825923a1c0c5bdb61cc08"},{"introduced":"0"},{"last_affected":"626ea4e62a3e5005fe9825923a1c0c5bdb61cc08"},{"introduced":"0"},{"last_affected":"626ea4e62a3e5005fe9825923a1c0c5bdb61cc08"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"6.0.3"},{"introduced":"0"},{"last_affected":"4.1.5"},{"introduced":"0"},{"last_affected":"7.0"},{"introduced":"0"},{"last_affected":"7.0"},{"introduced":"0"},{"last_affected":"7.0"},{"introduced":"0"},{"last_affected":"7.0"}]}}],"versions":["MELD_LIBREOFFICE_REPOS","cp-4.1-1","cp-4.1-2","cp-4.1-3","cp-4.1-4","cp-4.1-5","cp-4.1-branch-point","cp-6.0-1","cp-6.0-2","cp-6.0-3","cp-6.0-branch-point","gpg4libre-review-5.4.99","libreoffice-3-5-branch-point","libreoffice-3-6-branch-point","libreoffice-3.5.0.0","libreoffice-4-0-branch-point","libreoffice-4-1-branch-point","libreoffice-4-2-branch-point","libreoffice-4-2-milestone-1","libreoffice-4-3-branch-point","libreoffice-4-4-branch-point","libreoffice-4.1.0.1","libreoffice-5-0-branch-point","libreoffice-5-1-branch-point","libreoffice-5-2-branch-point","libreoffice-5-3-branch-point","libreoffice-5-4-branch-point","libreoffice-6-0-branch-point","libreoffice-6-1-branch-point","libreoffice-6-2-branch-point","libreoffice-6-3-branch-point","libreoffice-6-4-branch-point","libreoffice-7-0-branch-point","mimo-7-0-branch-point","sdremote-2.0.0","windows_build_successful_2011_11_08"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-10583.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]},{"events":[{"introduced":"0"},{"last_affected":"14.04"}]},{"events":[{"introduced":"0"},{"last_affected":"16.04"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}