7.9 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
15.7%
Splinefont in FontForge through 20230101 allows command injection via crafted filenames.
fontforge.org/en-US/downloads/
github.com/fontforge/fontforge/pull/5367
launchpad.net/bugs/cve/CVE-2024-25081
nvd.nist.gov/vuln/detail/CVE-2024-25081
security-tracker.debian.org/tracker/CVE-2024-25081
www.cve.org/CVERecord?id=CVE-2024-25081