Lucene search

Corenlp Security Vulnerabilities

cve

CVE-2021-44550

An Incorrect Access Control vulnerability exists in CoreNLP 4.3.2 via the classifier in NERServlet.java (lines 158 and...

9.8CVSS

9.3AI Score

0.003EPSS

2022-02-24 03:15 PM

cve

CVE-2022-0239

corenlp is vulnerable to Improper Restriction of XML External Entity...

9.8CVSS

9.3AI Score

0.002EPSS

2022-01-17 07:15 AM

cve

CVE-2022-0198

corenlp is vulnerable to Improper Restriction of XML External Entity...

7.1CVSS

6.8AI Score

0.001EPSS

2022-01-13 07:15 AM

cve

CVE-2021-3869

corenlp is vulnerable to Improper Restriction of XML External Entity...

7.5CVSS

7.5AI Score

0.002EPSS

2021-10-19 01:15 PM

cve

CVE-2021-3878

corenlp is vulnerable to Improper Restriction of XML External Entity...

9.8CVSS

9.3AI Score

0.003EPSS

2021-10-15 02:15 PM

cve

CVE-2020-28440

All versions of package corenlp-js-interface are vulnerable to Command Injection via the main...

9.8CVSS

9.7AI Score

0.004EPSS

2020-12-11 05:15 PM

cve

CVE-2020-28439

This affects all versions of package corenlp-js-prefab. The injection point is located in line 10 in 'index.js.' It depends on a vulnerable package 'corenlp-js-interface.' Vulnerability can be exploited with the following...

9.8CVSS

9.5AI Score

0.002EPSS

2020-12-11 05:15 PM