{"uuid": "fc3c78df-4b5b-484b-a24f-2de8047efe60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12243", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116836468435158836", "content": "CVE-2026-12243: NLTK 3.9.4 suffers from a HIGH severity path traversal bug \u2014 percent-encoded sequences like ..%2f bypass directory checks, allowing arbitrary file reads in NLP apps/Jupyter/CLI. Audit usages & restrict resource loading. https://radar.offseq.com/threat/cve-2026-12243-cwe-22-improper-limitation-of-a-pat-3eae11979fc43a41 #OffSeq #NLTK #Python", "creation_timestamp": "2026-06-30T01:30:32.997816Z"}