PT-2022-10719 · Nltk+3 · Nltk+3

Tomaarsen

Published

2022-01-04

Updated

2025-03-24

CVE-2021-3842

CVSS v4.0

8.7

High

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions nltk (affected versions not specified)

Description The issue concerns Inefficient Regular Expression Complexity, also known as ReDoS, in certain RegexpTaggers used within the get pos tagger and malt regex tagger functions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1333

Related Identifiers

CVE-2021-3842

GHSA-RQJH-JP2R-59CJ

PYSEC-2022-5

USN-7365-1

Affected Products

Debian

Linuxmint

Ubuntu

Nltk

PT-2022-10719 · Nltk+3 · Nltk+3

CVE-2021-3842

Weakness Enumeration

Related Identifiers

Affected Products

References · 19