CVE-2025-1194 | huggingface transformers up to 4.49.x SubWordJapaneseTokenizer redos

Inserito da Angelo Barbosa | Apr 29, 2025 | CVE

A vulnerability was found in huggingface transformers up to 4.49.x. It has been classified as problematic. This affects the function SubWordJapaneseTokenizer. The manipulation leads to inefficient regular expression complexity.

This vulnerability is uniquely identified as CVE-2025-1194. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-1194 | huggingface transformers up to 4.49.x SubWordJapaneseTokenizer redos

Post correlati

CVE-2024-10355 | SourceCodester Petrol Pump Management Software 1.0 /admin/invoice.php id sql injection

CVE-2024-44910 | NASA CryptoLib 1.3.0 AOS Subsystem crypto_aos.c out-of-bounds

CVE-2023-52902 | Linux Kernel up to 6.1.7 do_mmap memory leak (1442d51026c5/7f31cced5724)

CVE-2024-0768 | Envo Elementor Templates & Widgets for WooCommerce Plugin ajax_theme_activation cross-site request forgery