Skip to main content

Golang Org X Image Font Sfnt EUVDEUVD-2026-24245

| CVE-2026-33812 MEDIUM
Allocation of Resources Without Limits or Throttling (CWE-770)
2026-04-21 Go
6.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.1 MEDIUM
AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
Red Hat
6.1 MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
High

Lifecycle Timeline

4
CVSS changed
Apr 21, 2026 - 21:22 NVD
6.1 (MEDIUM)
Patch released
Apr 21, 2026 - 20:30 nvd
Patch available
EUVD ID Assigned
Apr 21, 2026 - 20:00 euvd
EUVD-2026-24245
CVE Published
Apr 21, 2026 - 19:21 nvd
MEDIUM 6.1

DescriptionCVE.org

Parsing a malicious font file can cause excessive memory allocation.

Analysis

Parsing a malicious font file can cause excessive memory allocation.

Vendor StatusVendor

Share

EUVD-2026-24245 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy