Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.0
ONLYOFFICE DocumentServer XLS File Processing Error
CVE-2026-41034
Summary
If a malicious XLS file is processed, it could potentially leak sensitive information and allow an attacker to bypass security protections. This affects ONLYOFFICE DocumentServer before version 9.3.0. Update to version 9.3.0 or later to fix the issue.
Original title
ONLYOFFICE DocumentServer before 9.3.0 has an untrusted pointer dereference in XLS processing/conversion (via pictFmla.cbBufInCtlStm and other vectors), leading to an information leak and ASLR bypass.
Original description
ONLYOFFICE DocumentServer before 9.3.0 has an untrusted pointer dereference in XLS processing/conversion (via pictFmla.cbBufInCtlStm and other vectors), leading to an information leak and ASLR bypass.
nvd CVSS3.1
5.0
Vulnerability type
CWE-125
Out-of-bounds Read
Published: 16 Apr 2026 · Updated: 16 Apr 2026 · First seen: 16 Apr 2026