CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/23 6:31 p.m.•1 views

EUVD-2025-35699

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8copy function at /fontforge/sfd.c...

7.5CVSS6.7AI score0.00037EPSS

Exploits0References2

OSV•added 2025/10/23 4:16 p.m.•1 views

CVE-2025-50951

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8copy function at /fontforge/sfd.c...

6.5CVSS5.8AI score

Exploits0References1

OSV•added 2025/10/23 4:16 p.m.•1 views

DEBIAN-CVE-2025-50951

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8copy function at /fontforge/sfd.c...

6.5CVSS5.2AI score0.00037EPSS

Exploits0References1

Cvelist•added 2025/10/23 12:0 a.m.•5 views

CVE-2025-50951

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8copy function at /fontforge/sfd.c...

0.00037EPSS

Exploits0References1

Vulnrichment•added 2025/10/23 12:0 a.m.•2 views

CVE-2025-50951

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8copy function at /fontforge/sfd.c...

6.9AI score0.00037EPSS

Exploits0References1

Tenable Nessus•added 2020/10/28 12:0 a.m.•38 views

Amazon Linux 2 : fontforge (ALAS-2020-1514)

The version of fontforge installed on the remote host is prior to 20120731b-13. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1514 advisory. An out-of-bounds write was discovered in fontforge while parsing SFD files containing very large LayerCount tokens. The flaw...

8.8CVSS8.6AI score0.00279EPSS

Exploits1References3

Veracode•added 2020/10/01 3:50 a.m.•27 views

Arbitrary Code Execution

fontforge is vulnerable to arbitrary code execution. An out-of-bounds write in SFDGetFontMetaData function in sfd.c allows an attacker to execute arbitrary code on the host OS...

8.8CVSS4.1AI score0.00279EPSS

Exploits1References11Affected Software1