Lucene search
K

6 matches found

OSV
OSV
added 2026/02/03 6:16 p.m.6 views

CVE-2025-65875

An arbitrary file upload vulnerability in the AddFont function of FPDF v1.86 and earlier allows attackers to execute arbitrary code via uploading a crafted PHP file...

9.8CVSS6.1AI score0.00528EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2014-2570

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in www/makesubset.php in PHP Font Lib before 0.3.1 allows remote attackers to inject arbitrary web script or HTML via the...

4.3CVSS5.9AI score0.02135EPSS
Exploits3References2
CNNVD
CNNVD
added 2022/03/17 12:0 a.m.2 views

stb_truetype.h 缓冲区错误漏洞

stbtruetype.h is a TTF font parsing library. A buffer error vulnerability exists in stbtruetype.h v1.26, which stems from a heap buffer overflow in the function ttULONG in stbtruetype.h. The vulnerability is caused by a heap buffer overflow in the stbtruetype.h function...

6.5CVSS6.7AI score0.00922EPSS
Exploits1References3
NVD
NVD
added 2019/11/12 7:15 p.m.19 views

CVE-2019-1441

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Win32k Graphics Remote Code Execution Vulnerability'...

9.3CVSS9.1AI score0.11953EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2018/08/14 7:0 a.m.37 views

Description of the security update for the font library vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: August 14, 2018

Description of the security update for the font library vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: August 14, 2018 Summary A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted...

9.3CVSS8.7AI score0.21808EPSS
Exploits0
OSV
OSV
added 2017/12/01 5:29 p.m.2 views

DEBIAN-CVE-2017-16611

In libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker can open but not read files on the system as root, triggering tape rewinds, watchdogs, or similar mechanisms that can be triggered by opening files...

5.5CVSS9AI score0.0042EPSS
Exploits0References1
Rows per page
Query Builder