CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/01/20 12:0 a.m.•8 views

MiracleLinux 8 : java-11-openjdk-11.0.20.0.8-2.el8 (AXSA:2023-6262:16)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6262:16 advisory. OpenJDK: ZIP file parsing infinite loop 8302483 CVE-2023-22036 OpenJDK: weakness in AES implementation 8308682 CVE-2023-22041 OpenJDK: improper...

7.5CVSS6.7AI score0.01812EPSS

Exploits0References7

Tenable Nessus•added 2026/01/20 12:0 a.m.•3 views

MiracleLinux 7 : harfbuzz-1.7.5-2.0.1.el7.AXS7 (AXSA:2024-8760:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8760:03 advisory. CVE-2023-25193: optimize looking back for base glyphs in hb-ot-layout-gsubgpos-private.hh CVEs: CVE-2023-25193 hb-ot-layout-gsubgpos.hh in HarfBuzz through...

7.5CVSS8.4AI score0.01812EPSS

Tenable Nessus•added 2025/06/16 12:0 a.m.•2 views

TencentOS Server 3: harfbuzz (TSSA-2024:0183)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0183 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

Tenable Nessus•added 2025/05/14 12:0 a.m.•4 views

Alibaba Cloud Linux 3 : 0135: harfbuzz (ALINUX3-SA-2024:0135)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0135 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-25193: hb-ot-layout-gsubgpos.hh in HarfBuz...

Rockylinux•added 2025/05/07 7:13 p.m.•5 views

harfbuzz security update

An update is available for harfbuzz. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list HarfBuzz is an implementation of the OpenType Layout engine. Security Fixes:...

7.5CVSS7.7AI score0.01812EPSS

OSV•added 2025/05/07 7:13 p.m.•5 views

RLSA-2024:2410 Moderate: harfbuzz security update

HarfBuzz is an implementation of the OpenType Layout engine. Security Fixes: harfbuzz: allows attackers to trigger On^2 growth via consecutive marks CVE-2023-25193 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer...

7.5CVSS7.9AI score0.01812EPSS

Rockylinux•added 2025/05/07 7:11 p.m.•2 views

harfbuzz security update

An update is available for harfbuzz. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list HarfBuzz is an implementation of the OpenType Layout engine. Security Fixes:...

7.5CVSS6.7AI score0.01812EPSS

OSV•added 2025/05/07 7:11 p.m.•5 views

RLSA-2024:2980 Moderate: harfbuzz security update

7.5CVSS7.9AI score0.01812EPSS

Tenable Nessus•added 2025/05/07 12:0 a.m.•6 views

RockyLinux 9 : harfbuzz (RLSA-2024:2410)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:2410 advisory. harfbuzz: allows attackers to trigger On^2 growth via consecutive marks CVE-2023-25193 Tenable has extracted the preceding description block directly from the...

Tenable Nessus•added 2025/03/05 12:0 a.m.•8 views

Exploits0References3

Linux Distros Unpatched Vulnerability : CVE-2023-25193

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base...

7.5CVSS6.2AI score0.01812EPSS

Exploits0References3

OpenVAS•added 2025/02/04 12:0 a.m.•4 views

Ubuntu: Security Advisory (USN-7251-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.01812EPSS

CBLMariner•added 2025/01/12 9:15 a.m.•25 views

CVE-2023-25193 affecting package mozjs60 60.9.0-13

CVE-2023-25193 affecting package mozjs60 60.9.0-13. This CVE either no longer is or was never applicable...

7.5CVSS8.2AI score0.01812EPSS

CBLMariner•added 2025/01/12 9:15 a.m.•19 views

CVE-2023-25193 affecting package qt5-qtbase 5.12.11-7

CVE-2023-25193 affecting package qt5-qtbase 5.12.11-7. This CVE either no longer is or was never applicable...

7.5CVSS8.2AI score0.01812EPSS

Tenable Nessus•added 2024/07/12 12:0 a.m.•41 views

Amazon Linux 2 : harfbuzz (ALAS-2024-2587)

The version of harfbuzz installed on the remote host is prior to 1.7.5-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2587 advisory. hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the proces...

Amazon•added 2024/07/11 12:0 a.m.•48 views

Exploits0References4

Medium: harfbuzz

Issue Overview: hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks. CVE-2023-25193 Affected Packages: harfbuzz Note: This advisory is applicable to Amazon Linux 2...

7.5CVSS8AI score0.01812EPSS

Amazon•added 2024/07/11 12:0 a.m.•4 views

Medium: harfbuzz

7.5CVSS7AI score0.01812EPSS