PT-2025-23529 · High Logic · Fontcreator
Kpc Of
·
Published
2025-06-02
·
Updated
2025-08-26
·
CVE-2025-20001
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
High-Logic FontCreator version 15.0.0.3015
Description
An out-of-bounds read issue exists, allowing disclosure of sensitive information. This can be triggered by a specially crafted font file, requiring an attacker to trick a user into opening the malicious file.
Recommendations
For High-Logic FontCreator version 15.0.0.3015, avoid opening untrusted or suspicious font files until a patch is available. As a temporary workaround, consider restricting access to font files from unverified sources to minimize the risk of exploitation.
Exploit
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fontcreator