stanfordnlp/CoreNLP

stanfordnlp/CoreNLP

stanfordnlp.github.io

Releases35

Frequency2 months 6 days

Last Release 12 months ago

Stars10.1K

CoreNLP: A Java suite of core NLP tools for tokenization, sentence segmentation, NER, parsing, coreference, sentiment analysis, etc.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-44550 ↗	Feb 24, 2022Thursday, 24 February 2022, 15:15	9.8 CRITICAL	7.5 HIGH
An Incorrect Access Control vulnerability exists in CoreNLP 4.3.2 via the classifier in NERServlet.java (lines 158 and 159).
CVE-2022-0239 ↗	Jan 17, 2022Monday, 17 January 2022, 07:15	9.8 CRITICAL	7.5 HIGH
corenlp is vulnerable to Improper Restriction of XML External Entity Reference
CVE-2022-0198 ↗	Jan 13, 2022Thursday, 13 January 2022, 07:15	7.1 HIGH	5.8 MEDIUM
corenlp is vulnerable to Improper Restriction of XML External Entity Reference
CVE-2021-3869 ↗	Oct 19, 2021Tuesday, 19 October 2021, 13:15	7.5 HIGH	5 MEDIUM
corenlp is vulnerable to Improper Restriction of XML External Entity Reference
CVE-2021-3878 ↗	Oct 15, 2021Friday, 15 October 2021, 14:15	9.8 CRITICAL	7.5 HIGH
corenlp is vulnerable to Improper Restriction of XML External Entity Reference