3 matches found
CVE-2025-3263
A Regular Expression Denial of Service ReDoS vulnerability was discovered in the Hugging Face Transformers library. This vulnerability may allow an attacker to induce a denial of service in the application using the Transformers library. Mitigation Mitigation for this issue is either not availabl...
CVE-2025-3263
creationtimestamp| type| source ---|---|--- 2025-07-07 11:20:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lteo6hvnoa2m...
CVE-2025-3263
CVE-2025-3263 in Hugging Face Transformers (get_configuration_file in transformers.configuration_utils) is a RegEx Denial of Service triggered by the pattern config.(.*).json. The issue affects v4.49.0 and is resolved in v4.51.0. Exploitation can cause high CPU usage, potentially disrupting model...