Cyber Resilience

CVE-2025-15269

High

Published: 31 December 2025

Published
31 December 2025
Modified
07 January 2026
KEV Added
Patch
CVSS Score v3 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score 0.0047 37.3th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2025-15269 is a high-severity Use After Free (CWE-416) vulnerability in Fontforge Fontforge. Its CVSS base score is 8.8 (High).

Operationally, ranked at the 37.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page…

more

or open a malicious file. The specific flaw exists within the parsing of SFD files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-28564.

CWE(s)

Related Threats

CVEs Like This One

CVE-2025-15280Same product: Fontforge Fontforge
CVE-2025-15273Same product: Fontforge Fontforge
CVE-2025-15271Same product: Fontforge Fontforge
CVE-2025-15274Same product: Fontforge Fontforge
CVE-2025-15270Same product: Fontforge Fontforge
CVE-2025-15272Same product: Fontforge Fontforge
CVE-2025-15275Same product: Fontforge Fontforge
CVE-2026-7357Shared CWE-416
CVE-2026-45185Shared CWE-416
CVE-2025-21298Shared CWE-416

Affected Assets

fontforge
fontforge
2025-11-17

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-416

Use-after-free exploits that achieve arbitrary code execution are blocked or significantly hardened by non-executable pages and ASLR.

References