Vulnerabilities in fonttools

2 results

CVE-2023-45139HIGHfonttools XML External Entity Injection (XXE) VulnerabilityEPSS 1.2%CVE-2025-66034MEDIUMfontTools is Vulnerable to Arbitrary File Write and XML injection in fontTools.varLibEPSS 0.5%