A high-severity vulnerability (CVE-2025-0514) in LibreOffice has been patched, addressing a flaw that allowed attackers to execute malicious files on Windows systems via hyperlink handling mechanisms. The vulnerability, affecting versions before 24.8.5, involved improper validation of non-file URLs, which could bypass safeguards and execute arbitrary code. The patch, released on February 25, 2025, enhances validation checks to block such URLs. Users are urged to update immediately to mitigate risks, as the flaw highlights ongoing challenges in securing document-processing workflows against evolving threats.

‍