{“lastseen”:””,”description”:”Apache OpenOffice Calc spreadsheet can contain links to other files, in the form of \\”external data sources\\”. A missing Authorization vulnerability in Apache OpenOffice allowed an attacker to craft a document that would cause such links \\nto be loaded without prompt.\\n\\nThis issue affects Apache OpenOffice: through 4.1.15.\\n\\nUsers are recommended to upgrade to version 4.1.16, which fixes the issue.”,”published”:”2025-11-12T09:04:50.392Z”,”modified”:”2025-11-12T14:47:26.507Z”,”type”:”cve”,”title”:”Apache OpenOffice: Remote documents loaded without prompt via \\”external data sources\\” in Calc”,”source”:”apache”,”references”:”https:\/\/www.openoffice.org\/security\/cves\/CVE-2025-64403.html\\nhttps:\/\/lists.apache.org\/thread\/t7c6jhvdb00xtgd9vvn7h5sq9f4h5trt”,”id”:”CVE-2025-64403″,”bulletinFamily”:””,”cwe”:[“CWE-862″],”cvelist”:null,”sourceData”:”Apache Software Foundation Apache OpenOffice 0″,”sourceHref”:””,”cvss”:{“score”:8.1,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:R\/S:U\/C:H\/I:H\/A:N”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Apache OpenOffice”,”version”:”0″,”vendor”:”Apache Software Foundation”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”Apache OpenOffice Calc spreadsheet can contain links to other files, in the form of \\”external data sources\\”. A missing Authorization vulnerability in Apache OpenOffice allowed…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,52,12,15,13,7,11,5],"class_list":["post-26024","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-81","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n