{
  "threat_severity" : "Moderate",
  "public_date" : "2023-03-24T00:00:00Z",
  "bugzilla" : {
    "description" : "libreoffice: Empty entry in Java class path",
    "id" : "2182044",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2182044"
  },
  "cvss3" : {
    "cvss3_base_score" : "7.8",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
    "status" : "verified"
  },
  "cwe" : "(CWE-427|CWE-1188)->CWE-94",
  "details" : [ "Apache OpenOffice versions before 4.1.14 may be configured to add an empty entry to the Java class path. This may lead to run arbitrary Java code from the current directory.", "A flaw was found in LibreOffice. When an empty Java class path entry is configured, LibreOffice will search for Java classes in the current working directory, allowing malicious Java classes to load when opening a document using the file manager, resulting in arbitrary code execution." ],
  "statement" : "To exploit this flaw, an attacker would need to convince a user to extract an archive (tar, zip, etc) containing a LibreOffice document and a specific file with Java code inside it, and then the user would need to open the LibreOffice document normally. As user interaction is required to open an unstrusted file, this flaw was rated with a moderate security impact.",
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2023-11-14T00:00:00Z",
    "advisory" : "RHSA-2023:6933",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "libreoffice-1:6.4.7.2-15.el8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2023-11-07T00:00:00Z",
    "advisory" : "RHSA-2023:6508",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9",
    "package" : "libreoffice-1:7.1.8.1-11.el9"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "libreoffice",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Out of support scope",
    "package_name" : "libreoffice",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Will not fix",
    "package_name" : "libreoffice:flatpak/libreoffice",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Will not fix",
    "package_name" : "libreoffice:flatpak/libreoffice",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2022-38745\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-38745" ],
  "name" : "CVE-2022-38745",
  "mitigation" : {
    "value" : "Disabling the Java runtime in LibreOffice will mitigate this issue. To disable it, uncheck the \"Use a Java runtime environment\" option box via: Tools, Options, LibreOffice/Advanced, Use a Java runtime environment.",
    "lang" : "en:us"
  },
  "csaw" : false
}