CVE-2026-0846
8.6
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
Summary
A vulnerability in the filestring() function of the nltk.util module in nltk version 3.9.2 allows arbitrary file read due to improper validation of input paths. The function directly opens files specified by user input without sanitization, enabling attackers to access sensitive system files by providing absolute paths or traversal paths. This vulnerability can be exploited locally or remotely, particularly in scenarios where the function is used in web APIs or other interfaces that accept user-supplied input.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| nltk | nltk/nltk | unspecified <= latest | affected |
Weaknesses
- CWE-36: CWE-36 Absolute Path Traversal
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: yes
- Technical Impact: partial
Additional References
nltk: NLTK: Arbitrary file read via improper path validation in filestring() function
Additional References
- https://access.redhat.com/security/cve/CVE-2026-0846
- https://bugzilla.redhat.com/show_bug.cgi?id=2445826
- https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-0846.json
- https://access.redhat.com/errata/RHSA-2026:10184
- https://access.redhat.com/errata/RHSA-2026:19712
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.