CVE-2022-38745

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-38745

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-38745.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-38745

Downstream

DEBIAN-CVE-2022-38745

DLA-3526-1

RHSA-2023:6508

RHSA-2023:6933

UBUNTU-CVE-2022-38745

USN-6023-1

Related

Published

2023-03-24T16:15:08Z

Modified

2025-08-09T20:01:27Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Apache OpenOffice versions before 4.1.14 may be configured to add an empty entry to the Java class path. This may lead to run arbitrary Java code from the current directory.

References

Affected packages