Lucene search
K

4 matches found

CVE
CVE
added 2025/12/31 6:59 a.m.18 views

CVE-2025-15277

CVE-2025-15277 affects FontForge’s GUtils SGI file parsing. The vulnerability is a heap-based buffer overflow in the SGI scanline parsing path caused by insufficient validation of the length of user-supplied data, enabling remote code execution in the context of the current process. Exploitation ...

7.8CVSS7.2AI score0.00259EPSS
Exploits0References1Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2025/12/29 12:0 a.m.2 views

(0Day) FontForge GUtils SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of scanlines...

7.8CVSS7.2AI score0.00259EPSS
Exploits0
OSV
OSV
added 2021/07/13 11:15 a.m.3 views

CVE-2021-34319

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The BMPloader.dll library in affected applications lacks proper validation of user-supplied data when parsing SGI files. This could result in an out of bounds write past the end of an...

7.8CVSS7.2AI score0.01574EPSS
Exploits0References2
OSV
OSV
added 2021/01/12 9:15 p.m.4 views

CVE-2020-26995

A vulnerability has been identified in JT2Go All versions V13.1.0, Teamcenter Visualization All versions V13.1.0. Affected applications lack proper validation of user-supplied data when parsing of SGI and RGB files. This could result in an out of bounds write past the end of an allocated structur...

8.8CVSS7.4AI score0.03492EPSS
Exploits0References4
Rows per page
Query Builder