CVE-2026-0847 — Path Traversal in Nltk

CWE-22 — Path Traversal6 documents6 sources

Severity

8.6HIGHNVD

EPSS

0.3%

top 45.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nltk Debian Nltk Nltk Nltk

Timeline

PublishedMar 4

Description

A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in multiple CorpusReader classes, including WordListCorpusReader, TaggedCorpusReader, and BracketParseCorpusReader. These classes fail to properly sanitize or validate file paths, enabling attackers to traverse directories and access sensitive files on the server. This issue is particularly critical in scenarios where user-controlled file inputs are processed, such as in machine learning APIs…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:LExploitability: 3.9 | Impact: 4.7

Affected Packages3 packages

▶debiandebian/nltk< nltk 3.9.3-1 (forky)

▶Debiannltk/nltk< 3.9.3-1

▶CVEListV5nltk/nltk_nltkunspecified — latest

🔴Vulnerability Details

OSV

CVE-2026-0847: A vulnerability in NLTK versions up to and including 3↗2026-03-04

▶

GHSA

GHSA-68j8-pq59-fqgm: A vulnerability in NLTK versions up to and including 3↗2026-03-04

▶

📋Vendor Advisories

Red Hat

nltk: NLTK: Arbitrary file read via path traversal vulnerability↗2026-03-04

▶

Debian

CVE-2026-0847: nltk - A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-0847 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶