fontTools is Vulnerable to Arbitrary File Write and XML injection...

6.3 / 10

MEDIUM

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:L

Description

fontTools is a library for manipulating fonts, written in Python. In versions from 4.33.0 to before 4.60.2, the fonttools varLib (or python3 -m fontTools.varLib) script has an arbitrary file write vulnerability that leads to remote code execution when a malicious .designspace file is processed. The vulnerability affects the main() code path of fontTools.varLib, used by the fonttools varLib CLI and any code that invokes fontTools.varLib.main(). This issue has been patched in version 4.60.2.

Basic Information

ID CVE-2025-66034

Source GitHub_M

Published Nov 29, 2025 at 01:07

Affected Product

Vendor fonttools

Product fonttools

Version >= 4.33.0, < 4.60.2

Affected Versions fonttools fonttools >= 4.33.0, < 4.60.2

CWE Classification

CWE-91

References

{
    "lastseen": "",
    "description": "fontTools is a library for manipulating fonts, written in Python. In versions from 4.33.0 to before 4.60.2, the fonttools varLib (or python3 -m fontTools.varLib) script has an arbitrary file write vulnerability that leads to remote code execution when a malicious .designspace file is processed. The vulnerability affects the main() code path of fontTools.varLib, used by the fonttools varLib CLI and any code that invokes fontTools.varLib.main(). This issue has been patched in version 4.60.2.",
    "published": "2025-11-29T01:07:12.193Z",
    "modified": "2025-11-29T01:07:12.193Z",
    "type": "cve",
    "title": "fontTools is Vulnerable to Arbitrary File Write and XML injection in fontTools.varLib",
    "source": "GitHub_M",
    "references": "https://github.com/fonttools/fonttools/security/advisories/GHSA-768j-98cg-p3fv\nhttps://github.com/fonttools/fonttools/commit/a696d5ba93270d5954f98e7cab5ddca8a02c1e32",
    "id": "CVE-2025-66034",
    "bulletinFamily": "",
    "cwe": [
        "CWE-91"
    ],
    "cvelist": null,
    "sourceData": "fonttools fonttools >= 4.33.0, < 4.60.2",
    "sourceHref": "",
    "cvss": {
        "score": 6.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "fonttools",
    "version": ">= 4.33.0, < 4.60.2",
    "vendor": "fonttools",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

fontTools is Vulnerable to Arbitrary File Write and XML injection in fontTools.varLib_CVE-2025-66034