Lucene search
K

9 matches found

BDU FSTEC
BDU FSTEC
added 2024/09/16 12:0 a.m.7 views

The vulnerability of the nltk.download() function in the Natural Language Toolkit (NLTK) library, which is used for symbolic and statistical processing of natural language, allows a hacker to execute arbitrary code.

The vulnerability of the nltk.download function in the Natural Language Toolkit NLTK library, which is used for symbolic and statistical processing of natural language, relates to the recovery of unreliable data in memory during the processing of the averagedperceptrontagger and punkt packages...

10CVSS7.3AI score0.01346EPSS
Exploits0References6Affected Software1
SUSE CVE
SUSE CVE
added 2024/06/28 11:16 p.m.3 views

SUSE CVE-2024-39705

NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python code, and the integrated data package download functionality is used. This affects, for example, averagedperceptrontagger and punkt...

9.8CVSS7.5AI score0.01346EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/06/28 12:33 a.m.89 views

ntlk unsafe deserialization vulnerability

NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python code, and the integrated data package download functionality is used. This affects, for example, averagedperceptrontagger and punkt...

9.8CVSS7.9AI score0.01346EPSS
Exploits0References7Affected Software1
PyPA
PyPA
added 2024/06/27 10:15 p.m.8 views

PYSEC-2024-167

NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python code, and the integrated data package download functionality is used. This affects, for example, averagedperceptrontagger and punkt...

9.8CVSS8.2AI score0.01346EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/06/27 10:15 p.m.4 views

DEBIAN-CVE-2024-39705

NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python code, and the integrated data package download functionality is used. This affects, for example, averagedperceptrontagger and punkt...

9.8CVSS7.9AI score0.01346EPSS
Exploits0References1
OSV
OSV
added 2024/06/27 10:15 p.m.14 views

PYSEC-2024-167

NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python code, and the integrated data package download functionality is used. This affects, for example, averagedperceptrontagger and punkt...

9.8CVSS9.9AI score0.01346EPSS
Exploits0References4
OSV
OSV
added 2024/06/27 10:15 p.m.9 views

UBUNTU-CVE-2024-39705

NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python code, and the integrated data package download functionality is used. This affects, for example, averagedperceptrontagger and punkt...

9.8CVSS7.5AI score0.01346EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2024/06/21 10:24 a.m.85 views

Remote code execution vulnerability in NLTK

The current and earlier versions of NLTK are vulnerable to a rem...

8.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/05/19 12:0 a.m.4 views

PT-2024-6156 · Nltk +2 · Nltk +2

Name of the Vulnerable Software and Affected Versions: NLTK versions 3.8.1 and earlier Description: The issue is related to the nltk.download function in the NLTK library, which can lead to remote code execution when untrusted packages containing pickled Python code are downloaded. This...

10CVSS7.6AI score0.05831EPSS
Exploits2References33
Rows per page
Query Builder