CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

SUSE CVE•added 2023/02/15 4:42 a.m.•1 views

SUSE CVE-2017-11574

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset parsettf.c resulting in DoS or code execution via a crafted otf file...

6.3CVSS9AI score0.00635EPSS

Exploits0References4

Veracode•added 2018/05/28 7:57 a.m.•11 views

Remote Code Execution (RCE) Through Buffer Overflow

libfontforge.so is vulnerable to remote code execution RCE attacks through buffer overflow. A malicious user can pass a ttf file to the readcffset function in parsettf.c to cause a buffer overflow that can crash the application or cause arbitrary code to be executed...

7.8CVSS8.1AI score0.00513EPSS

Exploits0References4Affected Software1

RedhatCVE•added 2017/07/26 2:50 p.m.•13 views

CVE-2017-11574

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset parsettf.c resulting in DoS or code execution via a crafted otf file...

7.8CVSS5.4AI score0.00635EPSS

Exploits0References1

CNVD•added 2017/07/24 12:0 a.m.•1 views

FontForge buffer overflow vulnerability (CNVD-2017-18537)

FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in readcffset in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service or code execution with the help of a specially crafted otf fi...

7.8CVSS7.8AI score0.00635EPSS

Exploits0References1

OSV•added 2017/07/23 10:29 p.m.•1 views

DEBIAN-CVE-2017-11574

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset parsettf.c resulting in DoS or code execution via a crafted otf file...

7.8CVSS8AI score0.00635EPSS

Exploits0References1

NVD•added 2017/07/23 10:29 p.m.•11 views

CVE-2017-11574

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset parsettf.c resulting in DoS or code execution via a crafted otf file...

7.8CVSS8AI score0.00635EPSS

Exploits0References2

CVE•added 2017/07/23 10:0 p.m.•76 views

CVE-2017-11574

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) triggered by a crafted OpenType font, leading to DoS or code execution. Public sources in connected documents show a fixed update (fontforge 20170731 per OSV SUSE-SU-2019:2236-1) and Mageia/Mageia advisori...

7.8CVSS7.6AI score0.00635EPSS

Exploits0References2Affected Software1

Cvelist•added 2017/07/23 10:0 p.m.•15 views

CVE-2017-11574

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset parsettf.c resulting in DoS or code execution via a crafted otf file...

7.7AI score0.00635EPSS

Exploits0References2

UbuntuCve•added 2017/07/23 12:0 a.m.•17 views

CVE-2017-11574

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset parsettf.c resulting in DoS or code execution via a crafted otf file...

7.8CVSS7.5AI score0.00635EPSS

Exploits0References3

OSV•added 2017/07/23 12:0 a.m.•0 views

UBUNTU-CVE-2017-11574

FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset parsettf.c resulting in DoS or code execution via a crafted otf file...

7.8CVSS7.5AI score0.00635EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by