Microsoft Font Subsetting – DLL Heap Corruption in ComputeFormat4CmapData
Microsoft Font Subsetting – DLL Heap Corruption in ComputeFormat4CmapData
Tenda D301 v2 Modem Router – Persistent Cross-Site Scripting
Citrix SD-WAN Appliance 10.2.2 – Authentication Bypass / Remote Command Execution
Jenkins Dependency Graph View Plugin 0.13 – Persistent Cross-Site Scripting
Sahi Pro 8.0.0 – Remote Command Execution
MyT Project Management 1.5.1 – User[username] Persistent Cross-Site Scripting
Microsoft DirectWrite / AFDKO suffers from an interpreter stack underflow in OpenType font handling due to missing CHKUFLOW.
Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readFDSelect.
Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to incorrect handling of blendArray.
Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability due to integer overflow in readTTCDirectory.