CVE-2025-2099 | huggingface transformers up to 4.49.x testing_utils preprocess_string redos

Inserito da Angelo Barbosa | Mag 19, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in huggingface transformers up to 4.49.x. This issue affects the function preprocess_string of the component testing_utils. The manipulation leads to inefficient regular expression complexity.

The identification of this vulnerability is CVE-2025-2099. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-2099 | huggingface transformers up to 4.49.x testing_utils preprocess_string redos

Post correlati

CVE-2024-51772 | HPE Aruba Networking ClearPass Policy Manager up to 6.11.9/6.12.2 Web-based Management Interface os command injection

CVE-2024-3227 | Panwei eoffice OA up to 9.5 Backend save_image.php image_type path traversal

CVE-2024-13286 | Drupal SVG Embed up to 2.1.1 cross site scripting

CVE-2023-52099 | Huawei HarmonyOS/EMUI NMS Module access control