Cyber Resilience

CVE-2023-6185

High

Published: 11 December 2023

Published
11 December 2023
Modified
13 February 2025
KEV Added
Patch
CVSS Score v3.1 8.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:L/I:H/A:H
EPSS Score 0.0144 81.1th percentile
Risk Priority 17 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-6185 is a high-severity an unspecified weakness vulnerability in Libreoffice Libreoffice. Its CVSS base score is 8.3 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Client Execution (T1203); ranked in the top 18.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute arbitrary GStreamer plugins. In affected versions the filename of the embedded video is not sufficiently escaped when passed to GStreamer enabling an attacker…

more

to run arbitrary gstreamer plugins depending on what plugins are installed on the target system.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1203 Exploitation for Client Execution Execution
Adversaries may exploit software vulnerabilities in client applications to execute code.
Why these techniques?

CVE-2023-6185 is an improper input validation vulnerability in LibreOffice's GStreamer integration that allows execution of arbitrary GStreamer plugins via a malformed embedded video filename, enabling exploitation for client-side code execution.

Affected Assets

libreoffice
libreoffice
7.5.0 — 7.5.9 · 7.6.0 — 7.6.3
fedoraproject
fedora
38
debian
debian linux
11.0, 12.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References