CVE-2025-6051 | huggingface transformers up to 4.52.x normalize_numbers redos

A vulnerability was found in huggingface transformers up to 4.52.x. It has been declared as problematic. This impacts the function normalize_numbers. Such manipulation leads to inefficient regular expression complexity.

This vulnerability is uniquely identified as CVE-2025-6051. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More