VIR Vulnerability Intelligence Relay

Package impact

java MAVEN / org.apache.opennlp:opennlp-tools

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-42027 critical 9.8 9.8 24d ago Apache OpenNLP ExtensionLoader Vulnerable to Arbitrary Class Instantiation via Model Manifest debianjavaapache
CVE-2026-40682 critical 9.1 9.1 24d ago Apache OpenNLP DictionaryEntryPersistor Vulnerable to XML External Entity (XXE) via Unsanitized Dictionary Parsing debianjavaapache