3 matches found
CVE-2025-3262
A Regular Expression Denial of Service ReDoS vulnerability has been discovered in the Hugging Face Transformers library. This issue can be exploited by an attacker who is able to supply specially crafted malicious input. Such input can cause excessive processing time and resource consumption,...
CVE-2025-3262
creationtimestamp| type| source ---|---|--- 2025-07-07 11:22:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lteobna6iv2p...
CVE-2025-3262 Regular Expression Denial of Service (ReDoS) in huggingface/transformers
A Regular Expression Denial of Service ReDoS vulnerability was discovered in the huggingface/transformers repository, specifically in version 4.49.0. The vulnerability is due to inefficient regular expression complexity in the SETTINGRE variable within the transformers/commands/chat.py file. The...