Xendo

**Name of the Vulnerable Software and Affected Versions** xgrammar versions 0.1.23 **Description** xgrammar is an open-source library for efficient, flexible, and portable structured generation. A grammar optimizer introduced in version 0.1.23 can be exploited to cause a denial-of-service (DOS) attack on model providers by processing large grammars at a very low rate. **Recommendations** Update to version 0.1.24.

Name of the Vulnerable Software and Affected Versions: XGrammar versions prior to 0.1.21 Description: XGrammar, an open-source library for structured generation, contains an infinite recursion issue within its grammar. This issue was addressed in version 0.1.21. Recommendations: Update to version 0.1.21 or later to resolve this issue.