{"vulnerability": "CVE-2025-1194", "sightings": [{"uuid": "0e54cbfd-2c8d-477e-a13b-0b911e92f246", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11940", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3kdfgiowg23", "content": "", "creation_timestamp": "2025-10-19T12:45:18.560049Z"}, {"uuid": "eaa7c33a-a551-4919-918a-5510900e48ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-11948", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3m3lyil3sj62e", "content": "", "creation_timestamp": "2025-10-20T04:35:33.138686Z"}, {"uuid": "c39c1f53-a444-4467-af64-98bcef2659ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11940", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3m3meo7v3j22i", "content": "", "creation_timestamp": "2025-10-20T08:13:30.329666Z"}, {"uuid": "c8740c6c-9d40-40e7-a602-976e82d5c851", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11943", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3m3meqihsns2n", "content": "", "creation_timestamp": "2025-10-20T08:14:46.280573Z"}, {"uuid": "d7d1e182-74ce-491c-9ac1-14f65019e7f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11949", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3m3ov5kg5as2q", "content": "", "creation_timestamp": "2025-10-21T08:13:43.364027Z"}, {"uuid": "d2bbbf5e-7f5a-4bd8-8e07-2c9be6779cd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11949", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3m3ov6jmz4k2q", "content": "", "creation_timestamp": "2025-10-21T08:14:16.589102Z"}, {"uuid": "94c188ee-f361-4753-9a1d-b9b273eec9df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1194", "type": "seen", "source": "https://t.me/cvedetector/23991", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1194 - Huggingface Transformers Library GPT-NeoX-Japanese ReDoS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-1194 \nPublished : April 29, 2025, 12:15 p.m. | 17\u00a0minutes ago \nDescription : A Regular Expression Denial of Service (ReDoS) vulnerability was identified in the huggingface/transformers library, specifically in the file `tokenization_gpt_neox_japanese.py` of the GPT-NeoX-Japanese model. The vulnerability occurs in the SubWordJapaneseTokenizer class, where regular expressions process specially crafted inputs. The issue stems from a regex exhibiting exponential complexity under certain conditions, leading to excessive backtracking. This can result in high CPU usage and potential application downtime, effectively creating a Denial of Service (DoS) scenario. The affected version is v4.48.1 (latest). \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-29T15:09:26.000000Z"}, {"uuid": "1d76d416-6557-450b-8b8d-345a329b38f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11943", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3l6ah5xvy2h", "content": "", "creation_timestamp": "2025-10-19T20:45:42.579553Z"}, {"uuid": "d0300708-faab-45a9-a676-e182ae08a08b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11944", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3l6jfl5wl23", "content": "", "creation_timestamp": "2025-10-19T20:50:42.760339Z"}, {"uuid": "79bc9cc1-70f1-4fac-a94d-b23c34f2b8c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11945", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3llnxuif32f", "content": "", "creation_timestamp": "2025-10-20T00:45:54.913206Z"}, {"uuid": "fc9ec939-6679-472d-80c1-9bde5363c166", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11946", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3llwwc72f2o", "content": "", "creation_timestamp": "2025-10-20T00:50:55.181127Z"}, {"uuid": "5056c347-08eb-4c08-af8f-f8ff5ea44de9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11947", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3lm7uph552o", "content": "", "creation_timestamp": "2025-10-20T00:55:55.491754Z"}, {"uuid": "3822d0d5-ad40-4549-ba21-567dd92d67ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11948", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3lyzurbtk2o", "content": "", "creation_timestamp": "2025-10-20T04:45:12.878595Z"}, {"uuid": "cf1b3ce6-b818-4cde-a3dc-7a70cf69f5ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11949", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3oykycyge2o", "content": "", "creation_timestamp": "2025-10-21T09:14:52.458323Z"}, {"uuid": "87da67fa-f227-48a3-8c30-6a03e3ef8378", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-11940", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3m3jyotgeps2e", "content": "", "creation_timestamp": "2025-10-19T09:33:44.073584Z"}, {"uuid": "7fc1c800-5209-483d-9b99-20a6f626284f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1194", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13802", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1194\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_0, Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)\n\ud83d\udd39 Description: A Regular Expression Denial of Service (ReDoS) vulnerability was identified in the huggingface/transformers library, specifically in the file `tokenization_gpt_neox_japanese.py` of the GPT-NeoX-Japanese model. The vulnerability occurs in the SubWordJapaneseTokenizer class, where regular expressions process specially crafted inputs. The issue stems from a regex exhibiting exponential complexity under certain conditions, leading to excessive backtracking. This can result in high CPU usage and potential application downtime, effectively creating a Denial of Service (DoS) scenario. The affected version is v4.48.1 (latest).\n\ud83d\udccf Published: 2025-04-29T11:30:38.810Z\n\ud83d\udccf Modified: 2025-04-29T11:30:38.810Z\n\ud83d\udd17 References:\n1. https://huntr.com/bounties/86f58dcd-683f-4adc-a735-849f51e9abb2\n2. https://github.com/huggingface/transformers/commit/92c5ca9dd70de3ade2af2eb835c96215cc50e815", "creation_timestamp": "2025-04-29T12:12:36.000000Z"}, {"uuid": "d9853bff-daea-4cf9-ab06-03c25ae5afdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11942", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3kqswjpug2o", "content": "", "creation_timestamp": "2025-10-19T16:45:30.232429Z"}, {"uuid": "aab8680c-bcc4-4b1b-aee5-0b4487a378c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-11941", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3kr3ux5sn2o", "content": "", "creation_timestamp": "2025-10-19T16:50:30.422051Z"}]}