Is CVE-2019-9851 known to be exploited?

9 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Document Foundation Libreoffice

CVE-2019-9851

LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from. Protection was added, to address CVE-2019-9848, to…

EPSS: 0.851 (99.4th percentile) — read the EPSS interpretation.

Affected products

Document Foundation Libreoffice — versions unspecified

Public proof-of-concept exploits

References

www.libreoffice.org/about-us/security/advisories/CVE-2019-9851 (x_refsource_CONFIRM)
20190815 [SECURITY] [DSA 4501-1] libreoffice security update (mailing-list, x_refsource_BUGTRAQ)
DSA-4501 (vendor-advisory, x_refsource_DEBIAN)
packetstormsecurity.com/files/154168/LibreOffice-Macro-Python-Code-Execution.ht… (x_refsource_MISC)
FEDORA-2019-2fe22a3a2c (vendor-advisory, x_refsource_FEDORA)
USN-4102-1 (vendor-advisory, x_refsource_UBUNTU)
openSUSE-SU-2019:2057 (vendor-advisory, x_refsource_SUSE)
openSUSE-SU-2019:2183 (vendor-advisory, x_refsource_SUSE)
[debian-lts-announce] 20191006 [SECURITY] [DLA 1947-1] libreoffice security update (mailing-list, x_refsource_MLIST)

Frequently asked questions

What is CVE-2019-9851?: CVE-2019-9851 is a vulnerability in Document Foundation Libreoffice. Published 2019-08-15.
Is CVE-2019-9851 known to be exploited?: 9 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.