CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/06 2:43 p.m.•0 views

BIT-JAVA-2023-25193

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

7.5CVSS6.8AI score0.00068EPSS

Exploits0References9

Positive Technologies•added 2026/05/06 12:0 a.m.•3 views

PT-2026-37981

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

7.5CVSS6.7AI score0.00068EPSS

Positive Technologies•added 2026/05/06 12:0 a.m.•4 views

PT-2026-37774

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

7.5CVSS6.8AI score0.00068EPSS

Tenable Nessus•added 2026/01/20 12:0 a.m.•1 views

MiracleLinux 8 : harfbuzz-1.7.5-4.el8 (AXSA:2024-8252:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8252:02 advisory. harfbuzz: allows attackers to trigger On^2 growth via consecutive marks CVE-2023-25193 Tenable has extracted the preceding description block directly from th...

7.5CVSS8.4AI score0.00068EPSS

Exploits0References2

OSV•added 2025/10/21 5:24 p.m.•2 views

JLSEC-2025-175 hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via con...

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

7.5CVSS6.9AI score0.00068EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-29157

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00068EPSS

OSV•added 2025/05/07 7:13 p.m.•3 views

RLSA-2024:2410 Moderate: harfbuzz security update

HarfBuzz is an implementation of the OpenType Layout engine. Security Fixes: harfbuzz: allows attackers to trigger On^2 growth via consecutive marks CVE-2023-25193 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer...

7.5CVSS7.9AI score0.00068EPSS

Exploits0References2

OSV•added 2025/04/29 4:52 p.m.•2 views

CLSA-2025-1745945560 harfbuzz: Fix of CVE-2023-25193

CVE-2023-25193: fix On^2 growth triggered by consecutive marks during mark attachment...

7.5CVSS6.7AI score0.00068EPSS

Exploits0References1

Amazon•added 2024/07/11 12:0 a.m.•2 views

Medium: harfbuzz

Issue Overview: hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks. CVE-2023-25193 Affected Packages: harfbuzz Note: This advisory is applicable to Amazon Linux 2...

7.5CVSS7AI score0.00068EPSS

Exploits0

Oracle linux•added 2024/05/23 12:0 a.m.•29 views

harfbuzz security update

1.7.5-4 - Resolves:RHEL-8400 allows attackers to trigger On^2 growth via consecutive marks...

7.5CVSS7.1AI score0.00068EPSS

Exploits0

RedHat Linux•added 2024/05/22 9:56 a.m.•2 views

harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

A vulnerability was found HarfBuzz. This flaw allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

Tenable Nessus•added 2024/05/17 12:0 a.m.•25 views

EulerOS Virtualization 3.0.6.6 : harfbuzz (EulerOS-SA-2024-1652)

According to the versions of the harfbuzz packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the...

7.5CVSS6.4AI score0.00068EPSS

Exploits0References2

RedHat Linux•added 2024/04/30 10:42 a.m.•3 views

harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

A vulnerability was found HarfBuzz. This flaw allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

RedHat Linux•added 2023/07/21 2:35 p.m.•2 views

harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

A vulnerability was found HarfBuzz. This flaw allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

RedHat Linux•added 2023/07/20 1:6 p.m.•3 views

harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

A vulnerability was found HarfBuzz. This flaw allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

RedHat Linux•added 2023/07/20 12:24 p.m.•2 views

harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

A vulnerability was found HarfBuzz. This flaw allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

RedHat Linux•added 2023/07/20 12:19 p.m.•4 views

harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

A vulnerability was found HarfBuzz. This flaw allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

RedHat Linux•added 2023/07/20 12:18 p.m.•4 views

harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

A vulnerability was found HarfBuzz. This flaw allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...