{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-7788", "assignerOrgId": "4fe7d05b-1353-44cc-8b7a-1e416936dff2", "state": "PUBLISHED", "assignerShortName": "Document Fdn.", "dateReserved": "2024-08-14T11:41:07.960Z", "datePublished": "2024-09-17T14:28:36.075Z", "dateUpdated": "2024-10-12T13:05:35.355Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "LibreOffice", "vendor": "The Document Foundation", "versions": [{"lessThan": "< 24.2.5", "status": "affected", "version": "24.2", "versionType": "24.2 series"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Thanks to Thanks to Yufan You for finding and reporting this issue"}, {"lang": "en", "type": "remediation developer", "value": "Thanks to Michael Stahl of allotropia for providing a fix"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Improper Digital Signature Invalidation&nbsp; vulnerability in Zip Repair Mode of The Document Foundation LibreOffice allows <span style=\"background-color: rgb(246, 245, 244);\">Signature forgery vulnerability in LibreOffice</span><p>This issue affects LibreOffice: from 24.2 before &lt; 24.2.5.</p>"}], "value": "Improper Digital Signature Invalidation\u00a0 vulnerability in Zip Repair Mode of The Document Foundation LibreOffice allows Signature forgery vulnerability in LibreOfficeThis issue affects LibreOffice: from 24.2 before < 24.2.5."}], "impacts": [{"capecId": "CAPEC-477", "descriptions": [{"lang": "en", "value": "CAPEC-477 Signature Spoofing by Mixing Signed and Unsigned Content"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-347", "description": "CWE-347 Improper Verification of Cryptographic Signature", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "4fe7d05b-1353-44cc-8b7a-1e416936dff2", "shortName": "Document Fdn.", "dateUpdated": "2024-09-17T14:28:36.075Z"}, "references": [{"url": "https://www.libreoffice.org/about-us/security/advisories/CVE-2024-7788"}], "source": {"discovery": "EXTERNAL"}, "title": "Signatures in \"repair mode\" should not be trusted", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"affected": [{"vendor": "thedocumentfoundation", "product": "libreoffice", "cpes": ["cpe:2.3:a:thedocumentfoundation:libreoffice:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "24.2", "status": "affected", "lessThan": "24.2.5", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-17T15:52:01.086783Z", "id": "CVE-2024-7788", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-17T15:55:47.097Z"}}, {"title": "CVE Program Container", "references": [{"url": "https://lists.debian.org/debian-lts-announce/2024/10/msg00007.html"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-10-12T13:05:35.355Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://lists.debian.org/debian-lts-announce/2024/10/msg00007.html"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-10-12T13:05:35.355Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-7788", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-09-17T15:52:01.086783Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:thedocumentfoundation:libreoffice:*:*:*:*:*:*:*:*"], "vendor": "thedocumentfoundation", "product": "libreoffice", "versions": [{"status": "affected", "version": "24.2", "lessThan": "24.2.5", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-17T15:55:39.503Z"}}], "cna": {"title": "Signatures in \"repair mode\" should not be trusted", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Thanks to Thanks to Yufan You for finding and reporting this issue"}, {"lang": "en", "type": "remediation developer", "value": "Thanks to Michael Stahl of allotropia for providing a fix"}], "impacts": [{"capecId": "CAPEC-477", "descriptions": [{"lang": "en", "value": "CAPEC-477 Signature Spoofing by Mixing Signed and Unsigned Content"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "The Document Foundation", "product": "LibreOffice", "versions": [{"status": "affected", "version": "24.2", "lessThan": "< 24.2.5", "versionType": "24.2 series"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.libreoffice.org/about-us/security/advisories/CVE-2024-7788"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Improper Digital Signature Invalidation\u00a0 vulnerability in Zip Repair Mode of The Document Foundation LibreOffice allows Signature forgery vulnerability in LibreOfficeThis issue affects LibreOffice: from 24.2 before < 24.2.5.", "supportingMedia": [{"type": "text/html", "value": "Improper Digital Signature Invalidation&nbsp; vulnerability in Zip Repair Mode of The Document Foundation LibreOffice allows <span style=\"background-color: rgb(246, 245, 244);\">Signature forgery vulnerability in LibreOffice</span><p>This issue affects LibreOffice: from 24.2 before &lt; 24.2.5.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-347", "description": "CWE-347 Improper Verification of Cryptographic Signature"}]}], "providerMetadata": {"orgId": "4fe7d05b-1353-44cc-8b7a-1e416936dff2", "shortName": "Document Fdn.", "dateUpdated": "2024-09-17T14:28:36.075Z"}}}, "cveMetadata": {"cveId": "CVE-2024-7788", "state": "PUBLISHED", "dateUpdated": "2024-10-12T13:05:35.355Z", "dateReserved": "2024-08-14T11:41:07.960Z", "assignerOrgId": "4fe7d05b-1353-44cc-8b7a-1e416936dff2", "datePublished": "2024-09-17T14:28:36.075Z", "assignerShortName": "Document Fdn."}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*", "matchCriteriaId": "2ED260C8-BAEA-47C1-BA83-AC2671E59D29", "versionEndExcluding": "24.2.5", "versionStartIncluding": "24.2.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Improper Digital Signature Invalidation\u00a0 vulnerability in Zip Repair Mode of The Document Foundation LibreOffice allows Signature forgery vulnerability in LibreOfficeThis issue affects LibreOffice: from 24.2 before < 24.2.5."}, {"lang": "es", "value": "Vulnerabilidad de invalidaci\u00f3n de firma digital incorrecta en el modo de reparaci\u00f3n zip de The Document Foundation LibreOffice permite vulnerabilidad de falsificaci\u00f3n de firma en LibreOfficeEste problema afecta a LibreOffice: desde 24.2 hasta &lt; 24.2.5."}], "id": "CVE-2024-7788", "lastModified": "2024-11-21T09:52:07.257", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "security@documentfoundation.org", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-09-17T15:15:14.413", "references": [{"source": "security@documentfoundation.org", "tags": ["Vendor Advisory"], "url": "https://www.libreoffice.org/about-us/security/advisories/CVE-2024-7788"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.debian.org/debian-lts-announce/2024/10/msg00007.html"}], "sourceIdentifier": "security@documentfoundation.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-347"}], "source": "security@documentfoundation.org", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-347"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "libreoffice: improper digital signature invalidation vulnerability", "id": "2312865", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312865"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.8", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-347", "details": ["Improper Digital Signature Invalidation\u00a0 vulnerability in Zip Repair Mode of The Document Foundation LibreOffice allows Signature forgery vulnerability in LibreOfficeThis issue affects LibreOffice: from 24.2 before < 24.2.5.", "A flaw was found in LibreOffice. Various file formats are based on the zip file format. In cases of corruption of the underlying zip's central directory, LibreOffice offers a \"repair mode\" which will attempt to recover the zip file structure by scanning for secondary local file headers in the zip to reconstruct the document. In the case of digitally signed zip files, an attacker could construct a document which, when repaired, reported a signature status not valid for the recovered file."], "mitigation": {"lang": "en:us", "value": "Do not try to recover or open an untrusted document."}, "name": "CVE-2024-7788", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "libreoffice", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "libreoffice", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Will not fix", "package_name": "libreoffice", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Will not fix", "package_name": "libreoffice", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-09-17T15:15:14Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-7788\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-7788\nhttps://www.libreoffice.org/about-us/security/advisories/CVE-2024-7788"], "statement": "The issue of incorrect digital signature validation during the repair of corrupted zip files in LibreOffice is classified as moderate severity due to its specific conditions and limited impact. While the flaw could potentially allow an attacker to exploit the repair mechanism to bypass signature verification, it requires both the corruption of a zip file and the presence of a digital signature, which narrows the scope of exploitation. Furthermore, successful exploitation would only affect the validation of the signature status rather than directly compromising the integrity or security of the document's content.", "threat_severity": "Moderate"}

{}