CVE-2011-2177

HIGH

OpenOffice.org <3.3 - RCE

Title source: llm

Description

OpenOffice.org v3.3 allows execution of arbitrary code with the privileges of the user running the OpenOffice.org suite tools.

References (4)

[Third Party Advisory] https://access.redhat.com/security/cve/cve-2011-2177

[Issue Tracking, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2177

[Third Party Advisory] https://twitter.com/instasegv/status/75482755194032128

[Mailing List, Third Party Advisory] https://www.openwall.com/lists/oss-security/2011/06/02/4

Scores

CVSS v3 7.8

EPSS 0.0237

EPSS Percentile 84.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

Status published

Affected Products (1)

apache/openoffice

Timeline

Published Nov 27, 2019

Tracked Since Feb 18, 2026