7.1 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.5%
Splinefont in FontForge through 20230101 allows command injection via crafted archives or compressed files.
bugzilla.redhat.com/show_bug.cgi?id=2266180
github.com/fontforge/fontforge/pull/5367
nvd.nist.gov/vuln/detail/CVE-2024-25082
www.cve.org/CVERecord?id=CVE-2024-25082