CVE-2025-57809 — HIGH (7.5)

Q: How severe is CVE-2025-57809?

CVE-2025-57809 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-57809?

Check the references section above for vendor advisories and patch information. Affected products include: Mlc-Ai Xgrammar.

Vulnerability Description

XGrammar is an open-source library for efficient, flexible, and portable structured generation. Prior to version 0.1.21, XGrammar has an infinite recursion issue in the grammar. This issue has been resolved in version 0.1.21.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Mlc-Ai	Xgrammar	< 0.1.21

Related Weaknesses (CWE)

CWE-674

References

https://github.com/mlc-ai/xgrammar/commit/b943feacb5a1caf4d39de8ec3bf7c7ce066dcePatch
https://github.com/mlc-ai/xgrammar/issues/250ExploitIssue Tracking
https://github.com/mlc-ai/xgrammar/security/advisories/GHSA-5cmr-4px5-23pcVendor Advisory

FAQ

What is CVE-2025-57809?

CVE-2025-57809 is a vulnerability with a CVSS score of 7.5 (HIGH). XGrammar is an open-source library for efficient, flexible, and portable structured generation. Prior to version 0.1.21, XGrammar has an infinite recursion issue in the grammar. This issue has been re...

How severe is CVE-2025-57809?

CVE-2025-57809 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-57809?

Check the references section above for vendor advisories and patch information. Affected products include: Mlc-Ai Xgrammar.