exploitDog

CVE-2025-20001

Опубликовано: 02 июн. 2025

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

An out-of-bounds read vulnerability exists in High-Logic FontCreator 15.0.0.3015. A specially crafted font file can trigger this vulnerability which can lead to disclosure of sensitive information. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability.

Ссылки

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2157
Exploit
Third Party Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2157
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:high-logic:fontcreator:15.0.0.3015:*:*:*:*:*:*:*

EPSS

Процентиль: 19%

0.00061

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-125

Связанные уязвимости

GHSA-277h-8wc5-7qfc

CVSS3: 6.5

github

5 месяцев назад

An out-of-bounds read vulnerability exists in High-Logic FontCreator 15.0.0.3015. A specially crafted font file can trigger this vulnerability which can lead to disclosure of sensitive information. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability.

EPSS

Процентиль: 19%

0.00061

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-125