CVE-2026-25048

Summary

xgrammar is an open-source library for efficient, flexible, and portable structured generation. Prior to version 0.1.32, the multi-level nested syntax caused a segmentation fault (core dumped). This issue has been patched in version 0.1.32.

Affected Software

VendorProductVersion RangeStatus
mlc-aixgrammar< 0.1.32affected

Weaknesses

  • CWE-674: CWE-674: Uncontrolled Recursion

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

xgrammar: xgrammar: Denial of Service via multi-level nested syntax

Additional References

References