pkg:PyPI/fonttools
2 total CVEsHIGH1MEDIUM1
✅ Check your installed version
All known vulnerabilities
HIGH7.5CVE-2023-45139fonttools XML External Entity Injection (XXE) Vulnerability >= 4.28.2, < 4.43.0
MEDIUM6.3CVE-2025-66034fontTools is Vulnerable to Arbitrary File Write and XML injection in fontTools.varLib >= 4.33.0, < 4.60.2