CVE-2026-0848

Name of the Vulnerable Software and Affected Versions NLTK versions 3.9.2 and earlier

Description The software contains a flaw due to improper input validation in the StanfordSegmenter module, potentially leading to arbitrary code execution. The module dynamically loads external Java .jar files without verification or sandboxing. An attacker can supply or replace the JAR file, enabling the execution of arbitrary Java bytecode when the module is imported. This can be exploited through model poisoning, man-in-the-middle attacks, or dependency poisoning. The issue stems from the direct execution of the JAR file via subprocess with unvalidated classpath input, allowing malicious classes to execute when loaded by the Java Virtual Machine (JVM).

Recommendations Versions prior to 3.9.2 should be updated.