CVE-2025-15276: (0Day) FontForge SFD File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability
FontForge SFD File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SFD files. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28198.
Affected Software
Event History
Frequently Asked Questions
What is the severity of CVE-2025-15276?
CVE-2025-15276 has been assigned a high severity rating due to its potential for remote code execution.
How do I fix CVE-2025-15276?
To fix CVE-2025-15276, update FontForge to the latest version that includes the security patch.
What type of attacks can exploit CVE-2025-15276?
CVE-2025-15276 can be exploited by remote attackers through maliciously crafted SFD files.
Does CVE-2025-15276 require user interaction for exploitation?
Yes, exploitation of CVE-2025-15276 requires user interaction to open the malicious SFD file.
Which software is affected by CVE-2025-15276?
CVE-2025-15276 affects installations of FontForge across all versions.