CVE-2019-9849




LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to disable LibreOffice's ability to include remote resources within a document. A flaw existed where bullet graphics were omitted from this protection prior to version 6.2.5. This issue affects: Document Foundation LibreOffice versions prior to 6.2.5.


We have discovered 2,147 live websites that are affected by CVE-2019-9849.

Contact us to get more info



Affected Software

Product  LibreOffice
Category Content Management System
Vulnerable Versions
  • from 0 before 6.2.5
Total Vulnerable Versions195
Vulnerable Domains2,147 live websites (63.65% of LibreOffice install base)



Details

  • Published - Jul 16, 2019
  • Updated - Oct 6, 2019

Credits

  • Thanks to Matei "Mal" Badanoiu for discovering and reporting this problem




Countries

United States390 websites


Germany681 websites
France139 websites
Italy96 websites
GB70 websites
Poland53 websites
Czech Republic52 websites
Denmark50 websites
Netherlands49 websites
Russia42 websites

TLDs

.de541 websites
.com502 websites
.org154 websites
.net104 websites
.fr68 websites
.it60 websites
.dk44 websites
.pl39 websites
.co.uk37 websites
.cz37 websites

Vulnerable Versions

Vulnerable versions are highlighted in red


References


Websites affected by CVE-2019-9849

Top websites that are affected by CVE-2019-9849. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
***.*****.bg Bulgaria***,***
**************.*******.de Germany***,***
*****************.de Germany***,***
********.com United States***,***
******.cz Czech Republic***,***
***.****.br Brazil***,***
******.*******.de Germany***,***
*****************.cz Czech Republic***,***
************************.com United States***,***
**********.com United States***,***
See full domain list