Transformers — CVE history (PyPI)

Transformers

14 CVEs affect the Transformers PyPI package (highest CVSS 9.6). Latest disclosed: 2026-06-03. Full CVE history sourced from NVD.

Summary

Package
Transformers (PyPI)
Total CVEs
14
Actively exploited (CISA KEV)
0
Highest CVSS
9.6
Latest disclosed
2026-06-03

Recent CVEs (top 14)

CVESeverityCVSSKEVPublishedSummary
CVE-2026-5241Critical9.62026-06-03A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attacker-controlled model repository to execute arbitrary code during model initialization.
CVE-2026-4372High7.82026-05-24A critical remote code execution vulnerability exists in all versions of the HuggingFace transformers library prior to version 5.3.0.
CVE-2026-1839High7.82026-04-07A vulnerability in the HuggingFace Transformers library, specifically in the `Trainer` class, allows for arbitrary code execution.
CVE-2025-14930High7.82025-12-23Hugging Face Transformers GLM4 Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2025-14928High7.82025-12-23Hugging Face Transformers HuBERT convert_config Code Injection Remote Code Execution Vulnerability.
CVE-2025-14924High7.82025-12-23Hugging Face Transformers megatron_gpt2 Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2025-14920High7.82025-12-23Hugging Face Transformers Perceiver Model Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2025-14926High7.82025-12-23Hugging Face Transformers SEW convert_config Code Injection Remote Code Execution Vulnerability.
CVE-2025-14927High7.82025-12-23Hugging Face Transformers SEW-D convert_config Code Injection Remote Code Execution Vulnerability.
CVE-2025-14921High7.82025-12-23Hugging Face Transformers Transformer-XL Model Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2025-14929High7.82025-12-23Hugging Face Transformers X-CLIP Checkpoint Conversion Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2024-11394High8.82024-11-22Hugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2024-11393High8.82024-11-22Hugging Face Transformers MaskFormer Model Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2024-11392High7.52024-11-22Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution Vulnerability.

All-time worst (top 10 by CVSS)

CVESeverityCVSSKEVPublishedSummary
CVE-2026-5241Critical9.62026-06-03A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attacker-controlled model repository to execute arbitrary code during model initialization.
CVE-2024-11394High8.82024-11-22Hugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2024-11393High8.82024-11-22Hugging Face Transformers MaskFormer Model Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2026-4372High7.82026-05-24A critical remote code execution vulnerability exists in all versions of the HuggingFace transformers library prior to version 5.3.0.
CVE-2026-1839High7.82026-04-07A vulnerability in the HuggingFace Transformers library, specifically in the `Trainer` class, allows for arbitrary code execution.
CVE-2025-14930High7.82025-12-23Hugging Face Transformers GLM4 Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2025-14928High7.82025-12-23Hugging Face Transformers HuBERT convert_config Code Injection Remote Code Execution Vulnerability.
CVE-2025-14924High7.82025-12-23Hugging Face Transformers megatron_gpt2 Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2025-14920High7.82025-12-23Hugging Face Transformers Perceiver Model Deserialization of Untrusted Data Remote Code Execution Vulnerability.
CVE-2025-14926High7.82025-12-23Hugging Face Transformers SEW convert_config Code Injection Remote Code Execution Vulnerability.