CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Libreoffice: >> Libreoffice >> 24.8.0.0 Security Vulnerabilities

CVE-2025-2866

Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation. In the affected versions of LibreOffice a flaw in the verification code for adbe.pkcs7.sha1 signatures could cause invalid signatures to be accepted as valid This issue affects LibreOffice: from 24.8 before < 24.8.6, from 25.2 before < 25.2.2.

CVSS Score

9.8

EPSS Score

0.0

Published

2025-04-27

Page 1

Vulnerabilities

Vulnerable Software

Libreoffice: >> Libreoffice >> 24.8.0.0 Security Vulnerabilities

Products

Pricing

Contact Us