4 matches found
CVE-2025-57809
XGrammar is an open-source library for efficient, flexible, and portable structured generation. Prior to version 0.1.21, XGrammar has an infinite recursion issue in the grammar. This issue has been resolved in version 0.1.21...
CVE-2025-57809
CVE-2025-57809 affects XGrammar. Prior to 0.1.21, there is an infinite recursion issue in the grammar; this is resolved in version 0.1.21. CVSSv3.1 base score 7.5 (HIGH) with availability impact; CVSS4 base score 8.7 (HIGH) with high availability impact. Remediation: upgrade XGrammar to 0.1.21 or...
CVE-2025-32381
XGrammar is an open-source library for efficient, flexible, and portable structured generation. Prior to 0.1.18, Xgrammar includes a cache for compiled grammars to increase performance with repeated use of the same grammar. This cache is held in memory. Since the cache is unbounded, a system maki...
CVE-2025-32381 Denial of Service by abusing xgrammar unbounded cache in memory
XGrammar is an open-source library for efficient, flexible, and portable structured generation. Prior to 0.1.18, Xgrammar includes a cache for compiled grammars to increase performance with repeated use of the same grammar. This cache is held in memory. Since the cache is unbounded, a system maki...