MongoDB Memory Disclosure Vulnerability Under Active Exploitation (CVE-2025-14847) (MongoBleed) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a MongoDB vulnerability to its Known Exploited Vulnerabilities Catalog, acknowledging the active exploitation of the vulnerability. CISA... 30/12/2025 Qualys-Threat-Protect
ZDI-25-1195: (0Day) FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit... 30/12/2025 Zero-Day Initiative
ZDI-25-1194: (0Day) FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit... 30/12/2025 Zero-Day Initiative
ZDI-25-1193: (0Day) FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit... 30/12/2025 Zero-Day Initiative
ZDI-25-1192: (0Day) FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit... 30/12/2025 Zero-Day Initiative
ZDI-25-1191: (0Day) FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit... 30/12/2025 Zero-Day Initiative
ZDI-25-1190: (0Day) FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit... 30/12/2025 Zero-Day Initiative
ZDI-25-1189: (0Day) FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit... 30/12/2025 Zero-Day Initiative
ZDI-25-1188: (0Day) FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit... 30/12/2025 Zero-Day Initiative
ZDI-25-1187: (0Day) FontForge SFD File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit... 30/12/2025 Zero-Day Initiative
