seclists.org · May 1, 2026 06:09 PM UTC

oss-sec: CVE-2026-40682: Apache OpenNLP: XXE via Dictionary Parsing in DictionaryEntryPersistor

Summary

Severity: moderate Affected versions: - Apache OpenNLP (org.apache.opennlp:opennlp-tools) before 2.5.9 - Apache OpenNLP (org.apache.opennlp:opennlp-tools) 3.0 b...

Original reporting

Open original source

AFBytes is a read-only aggregator. Use the original source for full context and complete reporting.

oss-sec: CVE-2026-40682: Apache OpenNLP: XXE via Dictionary Parsing in DictionaryEntryPersistor

Summary

Original reporting

Related coverage

Google Workspace Updates

Segway’s Dakar-Bred Xaber 300 Is a 60-MPH Electric Dirt Bike Built to Shred

NASA to increase value of CLPS contract to support surge of lunar lander missions

Demand for the Mac Mini is surging — and Apple just raised the starting price from $599 to $799

Apple Faces Dozens of Lawsuits Over AirTag Stalking After Class Action Denied

Fear And Opportunity: Immigration Scams Surged As Trump’s Sweeps Lured Desperate People To Eager Defrauders