A vulnerability was found in gunthercox ChatterBot up to 1.2.13. It has been rated as problematic. Affected by this issue is the function UbuntuCorpusTrainer.extract of the file /ubuntu_data/ubuntu_dialogs. The manipulation leads to symlink following.

This vulnerability is traded as CVE-2026-58198. An attack has to be approached locally. There is no exploit available.