A vulnerability has been discovered in LibreOffice, which could allow for arbitrary command execution. LibreOffice is an open-source office suite providing word processing, slides, and spreadsheets.
Successful exploitation of this vulnerability will enable the attacker to perform command execution in the context of the user running the affected application.
Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
REFERENCES:
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9855
The Document Foundation: https://www.libreoffice.org/about-us/security/advisories/cve-2019-9855/
