CVE-2025-27363

Name: CVE-2025-27363
Creator: NVD / NIST
Published: 2025-03-11T14:15:25.427+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.1/10Actively ExploitedEPSS 23.36%

Last modified Jun 17, 2026

CVE-2025-27363 is a high-severity vulnerability rated 8.1/10 on the CVSS scale. An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a static value causing it to wrap around and allocate too small of a heap buffer. CISA has confirmed active exploitation in the wild. EPSS estimates a 23.36% chance of exploitation in the next 30 days.

Description

An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a static value causing it to wrap around and allocate too small of a heap buffer. The code then writes up to 6 signed long integers out of bounds relative to this buffer. This may result in arbitrary code execution. This vulnerability may have been exploited in the wild.

Metrics

CVSS 3.1

8.1/10

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

23.36%

97.5th percentile

Probability of exploitation in the next 30 days. Learn more

Exploitation Status

This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by May 27, 2025.

Weakness Enumeration

CWE-787

Affected Software

Vendor	Product	Versions
Freetype	Freetype	<= 2.13.0
Debian	Debian Linux	11.0

References

https://www.facebook.com/security/advisories/cve-2025-27363Third Party Advisory
http://www.openwall.com/lists/oss-security/2025/03/13/1Mailing List
http://www.openwall.com/lists/oss-security/2025/03/13/11Mailing List
http://www.openwall.com/lists/oss-security/2025/03/13/12Mailing List
http://www.openwall.com/lists/oss-security/2025/03/13/2Mailing List
http://www.openwall.com/lists/oss-security/2025/03/13/3Mailing List
http://www.openwall.com/lists/oss-security/2025/03/13/8Mailing List
http://www.openwall.com/lists/oss-security/2025/03/14/1Mailing List
http://www.openwall.com/lists/oss-security/2025/03/14/2Mailing List
http://www.openwall.com/lists/oss-security/2025/03/14/3Mailing List
http://www.openwall.com/lists/oss-security/2025/03/14/4Mailing List
http://www.openwall.com/lists/oss-security/2025/05/06/3Mailing List
http://www.openwall.com/lists/oss-security/2026/04/16/5Mailing List
http://www.openwall.com/lists/oss-security/2026/04/19/3Mailing List
https://lists.debian.org/debian-lts-announce/2025/03/msg00030.htmlMailing List
https://source.android.com/docs/security/bulletin/2025-05-01Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-27363US Government Resource

Timeline

Published: Mar 11, 2025
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2025-27363?

How severe is CVE-2025-27363?

CVE-2025-27363 has a CVSS score of 8.1/10 (HIGH severity). The EPSS model estimates a 23.36% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.

How do I fix CVE-2025-27363?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2025-27363?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST