CVE-2024-25081

Published February 26th, 2024

View on NVD ↗

CVSS v3

4.2

MEDIUM

CVSS v2

N/A

Affected

1

PROJECT

Description

Splinefont in FontForge through 20230101 allows command injection via crafted filenames.

fontforge/fontforge

Free (libre) font editor for Windows, Mac OS X and GNU+Linux

GitHub

7.77K