Apache OpenOffice Multiple Vulnerabilities

Release Date: 13 Nov 2025

RISK: Medium Risk

TYPE: Clients - Productivity Products

Multiple vulnerabilities were identified in Apache OpenOffice. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing and sensitive information disclosure on the targeted system.

---

Impact

• Denial of Service
• Spoofing
• Information Disclosure

---

System / Technologies affected

• Apache OpenOffice versions prior to 4.1.16

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://www.openoffice.org/security/bulletin.html

---

Vulnerability Identifier

• CVE-2025-64401
• CVE-2025-64402
• CVE-2025-64403
• CVE-2025-64404
• CVE-2025-64405
• CVE-2025-64406
• CVE-2025-64407

---

Source

• https://www.openoffice.org/security/bulletin.html

---

Related Link

• https://www.openoffice.org/security/bulletin.html
• https://www.openoffice.org/security/cves/CVE-2025-64401.html
• https://www.openoffice.org/security/cves/CVE-2025-64402.html
• https://www.openoffice.org/security/cves/CVE-2025-64403.html
• https://www.openoffice.org/security/cves/CVE-2025-64404.html
• https://www.openoffice.org/security/cves/CVE-2025-64405.html
• https://www.openoffice.org/security/cves/CVE-2025-64406.html
• https://www.openoffice.org/security/cves/CVE-2025-64407.html