{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/47710?format=json","vulnerability_id":"VCID-1qgg-p2rh-4fgx","summary":"Multiple vulnerabilities have been found in both LibreOffice and\n    OpenOffice allowing remote attackers to execute arbitrary code or cause\n    Denial of Service.","aliases":[{"alias":"CVE-2014-3575"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/77175?format=json","purl":"pkg:ebuild/app-office/libreoffice@4.4.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-office/libreoffice@4.4.2"},{"url":"http://public2.vulnerablecode.io/api/packages/77176?format=json","purl":"pkg:ebuild/app-office/libreoffice-bin@4.4.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-office/libreoffice-bin@4.4.2"},{"url":"http://public2.vulnerablecode.io/api/packages/77177?format=json","purl":"pkg:ebuild/app-office/libreoffice-bin-debug@4.4.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-office/libreoffice-bin-debug@4.4.2"},{"url":"http://public2.vulnerablecode.io/api/packages/77178?format=json","purl":"pkg:ebuild/app-office/openoffice-bin@4.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-office/openoffice-bin@4.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/77179?format=json","purl":"pkg:ebuild/app-office/openoffice-bin@4.4.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-office/openoffice-bin@4.4.2"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/120700?format=json","purl":"pkg:rpm/redhat/libabw@0.0.2-1?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1qgg-p2rh-4fgx"},{"vulnerability":"VCID-5j4w-jaa8-7kae"},{"vulnerability":"VCID-drkj-da54-jfgd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libabw@0.0.2-1%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/120699?format=json","purl":"pkg:rpm/redhat/libcmis@0.4.1-5?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1qgg-p2rh-4fgx"},{"vulnerability":"VCID-5j4w-jaa8-7kae"},{"vulnerability":"VCID-drkj-da54-jfgd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libcmis@0.4.1-5%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/120696?format=json","purl":"pkg:rpm/redhat/libetonyek@0.0.4-2?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1qgg-p2rh-4fgx"},{"vulnerability":"VCID-5j4w-jaa8-7kae"},{"vulnerability":"VCID-drkj-da54-jfgd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libetonyek@0.0.4-2%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/120694?format=json","purl":"pkg:rpm/redhat/libfreehand@0.0.0-3?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1qgg-p2rh-4fgx"},{"vulnerability":"VCID-5j4w-jaa8-7kae"},{"vulnerability":"VCID-drkj-da54-jfgd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libfreehand@0.0.0-3%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/120701?format=json","purl":"pkg:rpm/redhat/liblangtag@0.5.4-8?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1qgg-p2rh-4fgx"},{"vulnerability":"VCID-5j4w-jaa8-7kae"},{"vulnerability":"VCID-drkj-da54-jfgd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/liblangtag@0.5.4-8%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/120697?format=json","purl":"pkg:rpm/redhat/libmwaw@0.2.0-4?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1qgg-p2rh-4fgx"},{"vulnerability":"VCID-5j4w-jaa8-7kae"},{"vulnerability":"VCID-drkj-da54-jfgd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libmwaw@0.2.0-4%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/120695?format=json","purl":"pkg:rpm/redhat/libodfgen@0.0.4-1?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1qgg-p2rh-4fgx"},{"vulnerability":"VCID-5j4w-jaa8-7kae"},{"vulnerability":"VCID-drkj-da54-jfgd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libodfgen@0.0.4-1%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/120693?format=json","purl":"pkg:rpm/redhat/libreoffice@1:4.2.6.3-5?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1qgg-p2rh-4fgx"},{"vulnerability":"VCID-5j4w-jaa8-7kae"},{"vulnerability":"VCID-drkj-da54-jfgd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libreoffice@1:4.2.6.3-5%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/120698?format=json","purl":"pkg:rpm/redhat/mdds@0.10.3-1?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1qgg-p2rh-4fgx"},{"vulnerability":"VCID-5j4w-jaa8-7kae"},{"vulnerability":"VCID-drkj-da54-jfgd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mdds@0.10.3-1%3Farch=el7"}],"references":[{"reference_url":"http://archives.neohapsis.com/archives/bugtraq/2014-08/0115.html","reference_id":"","reference_type":"","scores":[],"url":"http://archives.neohapsis.com/archives/bugtraq/2014-08/0115.html"},{"reference_url":"http://blog.documentfoundation.org/2014/08/28/libreoffice-4-3-1-fresh-announced/","reference_id":"","reference_type":"","scores":[],"url":"http://blog.documentfoundation.org/2014/08/28/libreoffice-4-3-1-fresh-announced/"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-September/137657.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-September/137657.html"},{"reference_url":"http://rhn.redhat.com/errata/RHSA-2015-0377.html","reference_id":"","reference_type":"","scores":[],"url":"http://rhn.redhat.com/errata/RHSA-2015-0377.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3575.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3575.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3575","reference_id":"","reference_type":"","scores":[{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93077","published_at":"2026-05-14T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93054","published_at":"2026-05-12T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.92963","published_at":"2026-04-01T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.92972","published_at":"2026-04-02T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.92976","published_at":"2026-04-04T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.92975","published_at":"2026-04-07T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.92983","published_at":"2026-04-08T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.92988","published_at":"2026-04-09T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.92993","published_at":"2026-04-11T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.92991","published_at":"2026-04-12T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.92992","published_at":"2026-04-13T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93002","published_at":"2026-04-16T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93005","published_at":"2026-04-18T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93012","published_at":"2026-04-21T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93018","published_at":"2026-04-24T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93017","published_at":"2026-05-05T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93013","published_at":"2026-04-29T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93033","published_at":"2026-05-07T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93044","published_at":"2026-05-09T12:55:00Z"},{"value":"0.09871","scoring_system":"epss","scoring_elements":"0.93047","published_at":"2026-05-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3575"},{"reference_url":"http://secunia.com/advisories/59600","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/59600"},{"reference_url":"http://secunia.com/advisories/59877","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/59877"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/95420","reference_id":"","reference_type":"","scores":[],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/95420"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:C/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.openoffice.org/security/cves/CVE-2014-3575.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.openoffice.org/security/cves/CVE-2014-3575.html"},{"reference_url":"http://www.securityfocus.com/bid/69354","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/69354"},{"reference_url":"http://www.securitytracker.com/id/1030754","reference_id":"","reference_type":"","scores":[],"url":"http://www.securitytracker.com/id/1030754"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1138882","reference_id":"1138882","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1138882"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:openoffice:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:openoffice:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:openoffice:*:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3575","reference_id":"CVE-2014-3575","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:N/A:N"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3575"},{"reference_url":"https://security.gentoo.org/glsa/201603-05","reference_id":"GLSA-201603-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201603-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0377","reference_id":"RHSA-2015:0377","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0377"},{"reference_url":"https://usn.ubuntu.com/2400-1/","reference_id":"USN-2400-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2400-1/"}],"weaknesses":[{"cwe_id":200,"name":"Exposure of Sensitive Information to an Unauthorized Actor","description":"The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information."}],"exploits":[],"severity_range_score":"4.3 - 7.1","exploitability":"0.5","weighted_severity":"3.9","risk_score":1.9,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1qgg-p2rh-4fgx"}