8 matches found
Security Bulletin: Vulnerability in Natural Language Toolkit (NLTK) affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component.
Summary Potential vulnerability in Natural Language Toolkit NLTK has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. The vulnerability have been addressed. Refer to details for additional...
openSUSE Security Advisory (openSUSE-SU-2024:0221-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: IBM Maximo Application Suite - Ai-Broker Component component uses nltk-3.8.1-py3-none-any.whl which is vulnerable to this CVE-2024-39705
Summary Security Bulletin: IBM Maximo Application Suite - Ai-Broker Component component uses nltk-3.8.1-py3-none-any.whl which is vulnerable to this CVE-2024-39705 Vulnerability Details CVEID:CVE-2024-39705 DESCRIPTION: Natural Language Toolkit NLTK could allow a remote attacker to execute...
Security Bulletin: Vulnerability in Natural Language Toolkit (NLTK)( CVE-2024-39705) affects IBM watsonx Assistant for IBM Cloud Pak for Data
Summary A potential arbitrary code execution vulnerability CVE-2024-39705 has been identified related to Natural Language Toolkit NLTK that affects IBM watsonx Assistant for IBM Cloud Pak for Data. This vulnerability have been addressed. Refer to details for additional information. Vulnerability...
openSUSE Security Advisory (openSUSE-SU-2024:0222-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
aaa-ml-datasets-course (=1.0.0), addownloader (>=0.2.3 <=0.2.12) +681 more potentially affected by CVE-2024-39705 via nltk (>=2.0.4 <=3.8.1)
nltk PYPI version =2.0.4, =0.2.3, =0.2.0, =0.0.1, =0.1.0, =0.0.9, =0.17.0, =0.0.1rc1, =0.1.0, =6.1.0, =6.1.4 and more Source cves: CVE-2024-39705 Source advisory: OSV:GHSA-CGVX-9447-VCCH...
aaa-ml-datasets-course (=1.0.0), addownloader (>=0.2.3 <=0.2.12) +681 more potentially affected by CVE-2024-39705 via nltk (>=2.0.4 <=3.8.1)
nltk PYPI version =2.0.4, =0.2.3, =0.2.0, =0.0.1, =0.1.0, =0.0.9, =0.17.0, =0.0.1rc1, =0.1.0, =6.1.0, =6.1.4 and more Source cves: CVE-2024-39705 Source advisory: OSV:PYSEC-2024-167...
CVE-2024-39705
NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python code, and the integrated data package download functionality is used. This affects, for example, averagedperceptrontagger and punkt...