Back to overview

CVE-2026-58198

MEDIUM Exploitation: PoC
5.5
CVSS 3.1
Description
ChatterBot is a machine learning, conversational dialog engine for creating chat bots. Prior to 1.2.14, UbuntuCorpusTrainer.extract() uses a predictable home-rooted output directory (~/ubuntu_data/ubuntu_dialogs) with a check-then-create pattern followed by tar.extractall(path=self.data_path), allowing a local attacker who pre-plants a symlink at the predictable path to cause archive contents to be written through the symlink to an attacker-chosen directory. This issue is fixed in version 1.2.14.

Metadata

CVE ID
CVE-2026-58198
State
PUBLISHED
Assigner
GitHub_M
Reserved
2026-06-29 17:09 UTC
Published
2026-07-09 18:32 UTC
Last updated
2026-07-09 19:12 UTC
Primary CWE
CWE-367
CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition
Vendor / Product
gunthercox / ChatterBot
Sources
cve.org  ·  NVD

Severity & Metrics

5.5 MEDIUM CVSS 3.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
SSVC — CISA Coordinator
Exploitation
PoC
Automatable
no
Tech. Impact
partial
Affected products (1)
VendorProductPlatformVersions
gunthercox ChatterBot < 1.2.14
Weakness (CWE)
CWESourceDescription
CWE-367 cna CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition
CWE-59 cna CWE-59: Improper Link Resolution Before File Access ('Link Following')
CVSS scores (1)
ScoreSeverityVersionSourceVector
5.5 MEDIUM 3.1 cna CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
References (4)
Back to overview