How severe is CVE-2024-6472?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2024-6472?

This is classified as CWE-295, which is a common weakness in software security.

CVE-2024-6472 - HIGH Severity | CVSS 7.8

Vulnerability Description

Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice before the macro is executed. Previously if verification failed the user could fail to understand the failure and choose to enable the macros anyway. This issue affects LibreOffice: from 24.2 before 24.2.5.

Related Vulnerabilities

CVE-2018-10403

HIGH

CVSS:7.8(High)

An issue was discovered in F-Secure XFENCE and Little Flocker. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/...

CWE-2952018

CVE-2018-10404

HIGH

CVSS:7.8(High)

An issue was discovered in Objective-See KnockKnock, LuLu, TaskExplorer, WhatsYourSign, and procInfo. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not compl...

CWE-2952018

CVE-2018-10405

HIGH

CVSS:7.8(High)

An issue was discovered in Google Santa and molcodesignchecker. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal...

CWE-2952018

CVE-2018-10406

HIGH

CVSS:7.8(High)

An issue was discovered in Yelp OSXCollector. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the u...

CWE-2952018

CVE-2018-10408

HIGH

CVSS:7.8(High)

An issue was discovered in VirusTotal. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of ...

CWE-2952018

CVE-2020-8289

HIGH

CVSS:7.8(High)

Backblaze for Windows before 7.0.1.433 and Backblaze for macOS before 7.0.1.434 suffer from improper certificate validation in `bztransmit` helper due to hardcoded whitelist of strings in URLs where v...

CWE-2952020