CVE-2026-42027 | Apache OpenNLP up to 2.5.8/3.0.0-M2 Model Manifest ExtensionLoader privilege escalation

A vulnerability was found in Apache OpenNLP up to 2.5.8/3.0.0-M2. It has been classified as critical. The impacted element is the function ExtensionLoader of the component Model Manifest. The manipulation leads to privilege escalation.

This vulnerability is referenced as CVE-2026-42027. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More