| [ |
| { |
| "cve_id": "CVE-2025-3933", |
| "osv_id": "GHSA-37mw-44qp-f5jm", |
| "summary": "Transformers is vulnerable to ReDoS attack through its DonutProcessor class", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.52.1", |
| "published": "2025-07-11T12:30:32Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-6921", |
| "osv_id": "GHSA-4w7r-h757-3r74", |
| "summary": "Hugging Face Transformers vulnerable to Regular Expression Denial of Service (ReDoS) in the AdamWeightDecay optimizer", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.53.0", |
| "published": "2025-09-23T15:31:09Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-6638", |
| "osv_id": "GHSA-59p9-h35m-wg4g", |
| "summary": "Hugging Face Transformers is vulnerable to ReDoS through its MarianTokenizer", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.53.0", |
| "published": "2025-09-12T12:30:23Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2026-1839", |
| "osv_id": "GHSA-69w3-r845-3855", |
| "summary": "HuggingFace Transformers allows for arbitrary code execution in the `Trainer` class", |
| "cvss_score": 7.0, |
| "severity": "HIGH", |
| "fixed_version": "5.0.0rc3", |
| "published": "2026-04-07T06:30:28Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2024-12720", |
| "osv_id": "GHSA-6rvg-6v2m-4j46", |
| "summary": "Transformers Regular Expression Denial of Service (ReDoS) vulnerability", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.48.0", |
| "published": "2025-03-20T12:32:43Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-5197", |
| "osv_id": "GHSA-9356-575x-2w9m", |
| "summary": "Hugging Face Transformers Regular Expression Denial of Service (ReDoS) vulnerability", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.53.0", |
| "published": "2025-08-06T12:31:20Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-1194", |
| "osv_id": "GHSA-fpwr-67px-3qhx", |
| "summary": "Transformers Regular Expression Denial of Service (ReDoS) vulnerability", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.50.0", |
| "published": "2025-04-29T12:30:21Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2024-11394", |
| "osv_id": "GHSA-hxxf-235m-72v3", |
| "summary": "Deserialization of Untrusted Data in Hugging Face Transformers", |
| "cvss_score": 9.5, |
| "severity": "CRITICAL", |
| "fixed_version": "4.48.0", |
| "published": "2024-11-23T03:31:58Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-3264", |
| "osv_id": "GHSA-jjph-296x-mrcr", |
| "summary": "Transformers vulnerable to ReDoS attack through its get_imports() function", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.51.0", |
| "published": "2025-07-07T12:30:22Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-3777", |
| "osv_id": "GHSA-phhr-52qp-3mj4", |
| "summary": "Transformers's Improper Input Validation vulnerability can be exploited through username injection", |
| "cvss_score": 7.5, |
| "severity": "HIGH", |
| "fixed_version": "4.52.1", |
| "published": "2025-07-07T12:30:22Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-3263", |
| "osv_id": "GHSA-q2wp-rjmx-x6x9", |
| "summary": "Transformers's ReDoS vulnerability in get_configuration_file can lead to catastrophic backtracking", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.51.0", |
| "published": "2025-07-07T12:30:22Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-2099", |
| "osv_id": "GHSA-qq3j-4f4f-9583", |
| "summary": "Hugging Face Transformers Regular Expression Denial of Service", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.50.0", |
| "published": "2025-05-19T12:30:33Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2024-11392", |
| "osv_id": "GHSA-qxrp-vhvm-j765", |
| "summary": "Deserialization of Untrusted Data in Hugging Face Transformers", |
| "cvss_score": 8.5, |
| "severity": "HIGH", |
| "fixed_version": "4.48.0", |
| "published": "2024-11-23T03:31:58Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-6051", |
| "osv_id": "GHSA-rcv9-qm8p-9p6j", |
| "summary": "Hugging Face Transformers library has Regular Expression Denial of Service", |
| "cvss_score": 8.0, |
| "severity": "HIGH", |
| "fixed_version": "4.53.0", |
| "published": "2025-09-14T18:30:26Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2024-11393", |
| "osv_id": "GHSA-wrfc-pvp9-mr9g", |
| "summary": "Deserialization of Untrusted Data in Hugging Face Transformers", |
| "cvss_score": 9.5, |
| "severity": "CRITICAL", |
| "fixed_version": "4.48.0", |
| "published": "2024-11-23T03:31:58Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2024-11392", |
| "osv_id": "PYSEC-2024-227", |
| "summary": "Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installati", |
| "cvss_score": 9.5, |
| "severity": "CRITICAL", |
| "fixed_version": "4.48.0", |
| "published": "2024-11-22T22:15:06Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2024-11393", |
| "osv_id": "PYSEC-2024-228", |
| "summary": "Hugging Face Transformers MaskFormer Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected insta", |
| "cvss_score": 9.5, |
| "severity": "CRITICAL", |
| "fixed_version": "4.48.0", |
| "published": "2024-11-22T22:15:07Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2024-11394", |
| "osv_id": "PYSEC-2024-229", |
| "summary": "Hugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installatio", |
| "cvss_score": 9.5, |
| "severity": "CRITICAL", |
| "fixed_version": "4.48.0", |
| "published": "2024-11-22T22:15:07Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| }, |
| { |
| "cve_id": "CVE-2025-2099", |
| "osv_id": "PYSEC-2025-40", |
| "summary": "A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils` module in huggingface/transformers version v4.48.3 allows for a Regular Expression Denial of Service (ReDoS) a", |
| "cvss_score": 9.5, |
| "severity": "CRITICAL", |
| "fixed_version": "8cb522b4190bd556ce51be04942720650b1a3e57", |
| "published": "2025-05-19T12:15:19Z", |
| "ecosystem": "PyPI", |
| "package": "transformers" |
| } |
| ] |
