CVE-2025-27363CISA KEV: Actively Exploited

FreeType Out-of-Bounds Write Vulnerability

Published May 6, 2025·Updated May 6, 2025

Description

FreeType contains an out-of-bounds write vulnerability when attempting to parse font subglyph structures related to TrueType GX and variable font files that may allow for arbitrary code execution.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free