3 matches found
CVE-2026-12252
CVE-2026-12252 affects nltk/nltk versions 3.9.3 and earlier, leaving five Stanford interface classes (StanfordPOSTagger, StanfordNERTagger, StanfordParser, StanfordDependencyParser, StanfordNeuralDependencyParser) vulnerable to untrusted JAR code execution. These classes accept user-controlled JA...
CVE-2026-48111
7-Zip is a file archiver with a high compression ratio. Versions 9.21 through 26.00 contain an off-by-one out-of-bounds read vulnerability in the ParseDepedencyExpression function of the UEFI firmware image parserCPP/7zip/Archive/UefiHandler.cpp. The function validates an attacker-controlled opco...
Dependency Parser 资源管理错误漏洞
Dependency Parser is a Python dependency file parser open-sourced by pyup.io. A security vulnerability exists in versions of Dependency Parser prior to 0.5.2, which stems from the fact that its dparse contains a regular expression that is vulnerable to regular expression denial of service attacks...