7.9 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
15.5%
Splinefont in FontForge through 20230101 allows command injection via crafted archives or compressed files.
fontforge.org/en-US/downloads/
github.com/fontforge/fontforge/pull/5367
launchpad.net/bugs/cve/CVE-2024-25082
nvd.nist.gov/vuln/detail/CVE-2024-25082
security-tracker.debian.org/tracker/CVE-2024-25082
www.cve.org/CVERecord?id=CVE-2024-25082