3 matches found
CVE-2026-40682
CVE-2026-40682 (Apache OpenNLP) XXE in DictionaryEntryPersistor via unsanitized dictionary parsing. The DictionaryEntryPersistor initializes a static SAXParserFactory at class-load time without enabling secure features, leaving DOCTYPE processing and external entity resolution enabled. When Dicti...
CVE-2026-42440
CVE-2026-42440 affects Apache OpenNLP, specifically AbstractModelReader. The vulnerability arises when getOutcomes(), getOutcomePatterns(), and getPredicates() read a 32-bit signed count from a binary model stream and allocate arrays (String[numOutcomes], int[numOCTypes][], String[NUM_PREDS]) wit...
CVE-2026-42027
The CVE-2026-42027 issue affects Apache OpenNLP ExtensionLoader: ExtensionLoader.instantiateExtension(Class, String) uses Class.forName() to load a class name from a model archive manifest and invokes its no-arg constructor. Although the isAssignableFrom check filters types after loading, Class.f...