CVE-2025-27363
high-risk
Published 2025-03-11
An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a static value causing it to wrap around and allocate too small of a heap buffer. The code then writes up to 6 signed long integers out of bounds relative to this buffer. This may result in arbitrary code execution. This vulnerability may have been exploited in the wild.
Do I need to act?
!
63.4% chance of exploitation in next 30 days
EPSS score — higher than 37% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.1/10
High
NETWORK
/ HIGH complexity
Affected Products (2)
References (15)
Third Party Advisory
https://www.facebook.com/security/advisories/cve-2025-27363
Third Party Advisory
https://source.android.com/docs/security/bulletin/2025-05-01
US Government Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-...
57
/ 100
high-risk
Severity
24/34 · High
Exploitability
26/34 · High
Exposure
7/34 · Low