Lucene search
K

4 matches found

SUSE Linux
SUSE Linux
added 2025/04/11 8:41 a.m.4 views

Security update for fontforge

This update for fontforge fixes the following issues: CVE-2017-17521: Fixed command injection in help function uiutil.c bsc1073014 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

5.9CVSS7.8AI score0.01834EPSS
Exploits0References4
CNVD
CNVD
added 2018/06/11 12:0 a.m.1 views

Mensis Parameter Injection Vulnerability

Mensis is an open source font editor. A security vulnerability exists in the uiutil.c file in Mensis version 0.0.080507, which originates from the program failing to validate strings before starting the program. A remote attacker can exploit this vulnerability to perform a parameter injection...

8.8CVSS7.2AI score0.0122EPSS
Exploits0References1
OSV
OSV
added 2017/12/14 4:29 p.m.6 views

UBUNTU-CVE-2017-17534

uiutil.c in Mensis 0.0.080507 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17521...

8.8CVSS7.3AI score0.0122EPSS
Exploits0References4
Cvelist
Cvelist
added 2017/12/14 4:0 p.m.38 views

CVE-2017-17521

uiutil.c in FontForge through 20170731 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17534...

8.5AI score0.01834EPSS
Exploits0References1
Rows per page
Query Builder