CVE-2025-15277 | FontForge SGI File Parser heap-based overflow (ZDI-25-1186)

Inserito da Angelo Barbosa | Dic 30, 2025 | CVE

A vulnerability classified as critical has been found in FontForge. The affected element is an unknown function of the component SGI File Parser. The manipulation leads to heap-based buffer overflow.

This vulnerability is traded as CVE-2025-15277. It is possible to initiate the attack remotely. There is no exploit available.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

CVE-2025-15277 | FontForge SGI File Parser heap-based overflow (ZDI-25-1186)

Post correlati

CVE-2023-50778 | PaaSLane Estimate Plugin up to 1.0.4 on Jenkins cross-site request forgery

CVE-2025-32992 | Thermo Fisher Scientific ePort up to 3.0.0 access control

CVE-2025-53606 | Apache Seata up to 2.3.x deserialization

CVE-2024-39574 | Dell PowerScale InsightIQ 5.1 privileges management (dsa-2024-360)