Lucene search
+L

13 matches found

CVE
CVE
added 2026/07/04 12:58 a.m.39 views

CVE-2026-12252

CVE-2026-12252 affects nltk/nltk versions 3.9.3 and earlier, leaving five Stanford interface classes (StanfordPOSTagger, StanfordNERTagger, StanfordParser, StanfordDependencyParser, StanfordNeuralDependencyParser) vulnerable to untrusted JAR code execution. These classes accept user-controlled JA...

7.8CVSS7.7AI score0.00158EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-1933

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.0087EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/23 3:30 a.m.11 views

CVE-2023-39020

stanford-parser v3.9.2 and below was discovered to contain a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument...

9.8CVSS7.8AI score0.0087EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2023/07/28 3:30 p.m.5 views

com.github.fracpete:nlp-weka-package (>=2015.3.25 <=2019.3.29), com.github.paramitamirza:CATENA (>=1.0.1 <=1.0.2) +8 more potentially affected by CVE-2023-39020 via edu.stanford.nlp:stanford-parser (>=3.2.0 <=3.9.2)

edu.stanford.nlp:stanford-parser MAVEN version =3.2.0, =2015.3.25, =1.0.1, =1.3.0, =1.1, =7.20.4, =8.0.1 - org.zalando.research:zap =1.0 Source cves: CVE-2023-39020 Source advisory: OSV:GHSA-353M-JH2M-72V4...

9.8CVSS7.2AI score0.0087EPSS
Exploits1
OSV
OSV
added 2023/07/28 3:30 p.m.24 views

GHSA-353M-JH2M-72V4 Code injection in stanford-parser

stanford-parser v3.9.2 and below was discovered to contain a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument...

9.8CVSS9.7AI score0.0087EPSS
Exploits1References4
NVD
NVD
added 2023/07/28 3:15 p.m.15 views

CVE-2023-39020

stanford-parser v3.9.2 and below was discovered to contain a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument...

9.8CVSS9.7AI score0.0087EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/07/28 3:15 p.m.6 views

CVE-2023-39020

stanford-parser v3.9.2 and below was discovered to contain a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument...

9.8CVSS7.4AI score0.0087EPSS
Exploits1References2
OSV
OSV
added 2023/07/28 3:15 p.m.6 views

CVE-2023-39020

stanford-parser v3.9.2 and below was discovered to contain a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument...

9.8CVSS5.8AI score0.0087EPSS
Exploits1References1
Prion
Prion
added 2023/07/28 3:15 p.m.14 views

Code injection

stanford-parser v3.9.2 and below was discovered to contain a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument...

7.5CVSS9.6AI score0.0087EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/07/28 12:0 a.m.22 views

CVE-2023-39020

stanford-parser v3.9.2 and below was discovered to contain a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument...

9.9AI score0.0087EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/07/28 12:0 a.m.9 views

CVE-2023-39020

stanford-parser v3.9.2 and below was discovered to contain a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument...

7.7AI score0.0087EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/07/28 12:0 a.m.6 views

PT-2023-26741 · Unknown · Stanford-Parser

Name of the Vulnerable Software and Affected Versions: stanford-parser versions 3.9.2 and below Description: The issue is related to a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument to t...

9.8CVSS7.4AI score0.0087EPSS
Exploits1References6
CVE
CVE
added 2023/07/28 12:0 a.m.47 views

CVE-2023-39020

Summary: CVE-2023-39020 affects stanford-parser v3.9.2 and earlier. The issue is a code injection vulnerability in the function edu.stanford.nlp.io.getBZip2PipedInputStream, exploitable by passing an unchecked argument. Reported products/refs consistently tie the weakness to Stanford CoreNLP’s st...

9.8CVSS9.6AI score0.0087EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder