CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

SUSE CVE•added 2026/01/07 12:25 a.m.•2 views

SUSE CVE-2025-15277

FontForge GUtils SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS7.8AI score0.00047EPSS

Exploits0References3

SUSE CVE•added 2026/01/07 12:25 a.m.•1 views

SUSE CVE-2025-15279

FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS7.8AI score0.00047EPSS

Exploits0References8

NVD•added 2025/12/31 7:15 a.m.•1 views

CVE-2025-15279

7.8CVSS0.00047EPSS

Exploits0References1

NVD•added 2025/12/31 7:15 a.m.•2 views

CVE-2025-15277

7.8CVSS0.00047EPSS

Exploits0References1

OSV•added 2025/12/31 7:15 a.m.•1 views

CVE-2025-15277

7.8CVSS7.6AI score

Exploits0References1

OSV•added 2025/12/31 7:15 a.m.•1 views

CVE-2025-15279

7.8CVSS7.5AI score

Exploits0References1

NVD•added 2025/12/31 7:15 a.m.•3 views

CVE-2025-15278

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS0.00051EPSS

Exploits0References1

OSV•added 2025/12/31 7:15 a.m.•3 views

CVE-2025-15278

7.8CVSS7.7AI score

Exploits0References1

UbuntuCve•added 2025/12/31 7:15 a.m.•2 views

CVE-2025-15278

7.8CVSS7.4AI score0.00051EPSS

Exploits0References2

Cvelist•added 2025/12/31 6:59 a.m.•24 views

CVE-2025-15279 FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

7.8CVSS0.00047EPSS

Exploits0References1

AlpineLinux•added 2025/12/31 6:59 a.m.•1 views

CVE-2025-15279

7.8CVSS7.6AI score0.00047EPSS

Exploits0References1

CVE•added 2025/12/31 6:59 a.m.•13 views

CVE-2025-15279

FontForge GUtils BMP File Parsing Heap-based Buffer Overflow (CVE-2025-15279) is a remote code execution vulnerability in FontForge. The flaw arises when parsing BMP pixel data and copying unvalidated user-supplied length to a heap buffer, allowing arbitrary code execution in the attacker’s conte...

7.8CVSS7.2AI score0.00047EPSS

Exploits0References1Affected Software1

Debian CVE•added 2025/12/31 6:59 a.m.•3 views

CVE-2025-15279

7.8CVSS8.2AI score0.00047EPSS

Exploits0

EUVD•added 2025/12/31 6:59 a.m.•2 views

EUVD-2025-205888

7.8CVSS7.2AI score0.00051EPSS

Exploits0References2

Debian CVE•added 2025/12/31 6:59 a.m.•4 views

CVE-2025-15278

7.8CVSS7.8AI score0.00051EPSS

Exploits0

CVE•added 2025/12/31 6:59 a.m.•6 views

CVE-2025-15278

CVE-2025-15278 concerns FontForge GUtils XBM file parsing. The flaw is an integer overflow during parsing of pixels in XBM files, caused by inadequate validation of user-supplied data, which leads to an out-of-bounds buffer allocation and allows remote code execution in the affected process. The ...

7.8CVSS7.4AI score0.00051EPSS

Exploits0References1Affected Software1