CVE-2026-4430 PUBLISHED

Heap Buffer Overflow in AgileEngine

Assigner: Document Fdn.
Reserved: 19.03.2026 Published: 07.05.2026 Updated: 07.05.2026

Out-of-bounds write vulnerability in The Document Foundation LibreOffice via crafted OOXML documents with mismatched encryption salt parameters.

This issue affects LibreOffice: from 26.2 before 26.2.3, from 25.8 before 25.8.7.

Metrics

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:P
CVSS Score: 5.4

Product Status

Vendor The Document Foundation
Product LibreOffice
Versions Default: unaffected
  • affected from 26.2 to 26.2.3 (excl.)
  • affected from 25.8 to 25.8.7 (excl.)

Credits

  • Duc Anh Nguyen (@Danzation) finder
  • Caolán McNamara <caolan.mcnamara@collabora.com> remediation developer

References

Problem Types

  • CWE-787 Out-of-bounds write CWE

Impacts

  • CAPEC-44 Overflow Binary Resource File