Filter
-Infinity
0

Trending

Last week
Last month
Last year

FontsBuffer Overflow

critical
9.8
First published (updated )
CVE-2019-15785

FontsWordPress Fonts plugin <= 3.7.7 - Broken Access Control vulnerability

high
8.8
First published (updated )
CVE-2024-43302

redhat/fontforgeBuffer Overflow

high
8.8
First published (updated )
CVE-2020-25690

debian/fontforgeuiutil.c in FontForge through 20170731 does not validate strings before launching the program specif…

high
8.8
First published (updated )
CVE-2017-17521

FontsBuffer Overflow

high
8.8
First published (updated )
CVE-2020-5496

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

FontsUse After Free

high
8.8
First published (updated )
CVE-2020-5395

FontsFontForge 20161012 is vulnerable to a buffer over-read in strnmatch (char.c) resulting in DoS or cod…

high
7.8
First published (updated )
CVE-2017-11575

FontsFontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFontName (parsettf.c) re…

high
7.8
First published (updated )
CVE-2017-11573

FontsFontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts (parsettf.c) re…

high
7.8
First published (updated )
CVE-2017-11572

FontsBuffer Overflow

high
7.8
First published (updated )
CVE-2017-11571

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

FontsFontForge 20161012 is vulnerable to a buffer over-read in getsid (parsettf.c) resulting in DoS or co…

high
7.8
First published (updated )
CVE-2017-11577

FontsBuffer Overflow

high
7.8
First published (updated )
CVE-2017-11574

FontsFontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStringToSplines (psread.c…

high
7.8
First published (updated )
CVE-2017-11568

FontsFontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopyrights (parsettf.c) …

high
7.8
First published (updated )
CVE-2017-11569

FontsFontForge 20161012 is vulnerable to a buffer over-read in umodenc (parsettf.c) resulting in DoS or c…

high
7.8
First published (updated )
CVE-2017-11570

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

pip/fonttoolsfonttools XML External Entity Injection (XXE) Vulnerability

high
7.5
First published (updated )
CVE-2023-45139

FontsWordPress Fonts plugin <= 3.7.7 - Cross Site Request Forgery (CSRF) to Stored XSSvulnerability

high
7.1
First published (updated )
CVE-2024-43301

ubuntu/fontforgeCommand Injection

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-25082

FontsBuffer Overflow

medium
5.5
First published (updated )
CVE-2017-11576

FontsFonts Plugin < 3.0.3 - Contributor+ Stored Cross-Site Scripting

medium
5.4
First published (updated )
CVE-2021-24637

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ubuntu/fontforgeCommand Injection

medium
4.2
EPSS
0.04%
First published (updated )
CVE-2024-25081

FontsCommand Injection

medium
4
First published (updated )
REDHAT-BUG-2266181

FontsBuffer Overflow

low
1
First published (updated )
REDHAT-BUG-659359

Vulnerabilties in FontTools & FontForge

First published (updated )
https://seclists.org/oss-sec/2024/q1/195

Vulnerabilties in FontTools & FontForge

First published (updated )
https://seclists.org/oss-sec/2024/q1/198

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203