Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2011-2335

Malware in sbrugna...

6.8CVSS6.1AI score0.01222EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0267

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.01228EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.33 views

Fedora 39 : fonttools (2024-6d1d9f70d2)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-6d1d9f70d2 advisory. Security fix for CVE-2023-45139 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

7.5CVSS7.4AI score0.01228EPSS
Exploits1References2
OSV
OSV
added 2024/01/19 11:6 a.m.3 views

OESA-2024-1080 python-fonttools security update

FontTools is a library for manipulating fonts, written in Python. The project includes the TTX tool, that can convert TrueType and OpenType fonts to and from an XML text format, which is also called TTX. It supports TrueType, OpenType, AFM and to an extent Type 1 and some Mac-specific formats. Th...

7.5CVSS7.4AI score0.01228EPSS
Exploits1References2
NVD
NVD
added 2024/01/10 4:15 p.m.12 views

CVE-2023-45139

fontTools is a library for manipulating fonts, written in Python. The subsetting module has a XML External Entity Injection XXE vulnerability which allows an attacker to resolve arbitrary entities when a candidate font OT-SVG fonts, which contains a SVG table, is parsed. This allows attackers to...

7.5CVSS7.6AI score0.01228EPSS
Exploits1References6
OSV
OSV
added 2024/01/10 4:15 p.m.2 views

UBUNTU-CVE-2023-45139

fontTools is a library for manipulating fonts, written in Python. The subsetting module has a XML External Entity Injection XXE vulnerability which allows an attacker to resolve arbitrary entities when a candidate font OT-SVG fonts, which contains a SVG table, is parsed. This allows attackers to...

7.5CVSS5.9AI score0.01228EPSS
Exploits1References6
OSV
OSV
added 2024/01/10 4:3 p.m.21 views

CVE-2023-45139 fonttools XML External Entity Injection (XXE) Vulnerability

fontTools is a library for manipulating fonts, written in Python. The subsetting module has a XML External Entity Injection XXE vulnerability which allows an attacker to resolve arbitrary entities when a candidate font OT-SVG fonts, which contains a SVG table, is parsed. This allows attackers to...

7.5CVSS7.7AI score0.01228EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2024/01/10 4:3 p.m.16 views

CVE-2023-45139

fontTools is a library for manipulating fonts, written in Python. The subsetting module has a XML External Entity Injection XXE vulnerability which allows an attacker to resolve arbitrary entities when a candidate font OT-SVG fonts, which contains a SVG table, is parsed. This allows attackers to...

7.5CVSS7.6AI score0.01228EPSS
Exploits1
NVD
NVD
added 2011/06/29 5:55 p.m.15 views

CVE-2011-2346

Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG fonts...

6.8CVSS7AI score0.01222EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2011/06/29 5:55 p.m.33 views

CVE-2011-2346

Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG fonts...

6.8CVSS5.9AI score0.01222EPSS
Exploits0References2
Prion
Prion
added 2011/06/29 5:55 p.m.18 views

Design/Logic Flaw

Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG fonts...

6.8CVSS7.6AI score0.01222EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2011/06/29 5:0 p.m.24 views

CVE-2011-2346

Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG fonts...

6.9AI score0.01222EPSS
Exploits0References5
CVE
CVE
added 2011/06/29 5:0 p.m.67 views

CVE-2011-2346

CVE-2011-2346 is a use-after-free in Google Chrome’s SVG fonts handling present in Chrome prior to 12.0.742.112. The underlying issue is a memory management error in the SVG font processing path, which could allow a remote attacker to trigger a denial of service or potentially cause other unspeci...

6.8CVSS7AI score0.01222EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2011/06/29 5:0 p.m.26 views

CVE-2011-2346

Removed by vendor...

6.8CVSS6.7AI score0.01222EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/03/11 12:0 a.m.34 views

Debian DSA-2189-1 : chromium-browser - several vulnerabilities

Several vulnerabilities were discovered in the Chromium browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-1108 Google Chrome before 9.0.597.107 does not properly implement JavaScript dialogs, which allows remote attackers to cause a denial of...

7.5CVSS8.1AI score0.01977EPSS
Exploits6References16
Debian
Debian
added 2011/03/10 5:22 p.m.42 views

[SECURITY] [DSA 2189-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2189-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano March 10, 2011 http://www.debian.org/security/faq -...

7.5CVSS7.8AI score0.01977EPSS
Exploits6
Rows per page
Query Builder