Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-47214 |
|
Vulnerability in docling (CVE-2026-47214)
vulnerability in docling (CVE-2026-47214). Confidential information can be exposed externally. Exploitable via ``base_path``. Mitigation: upgrade to `2.94.0` or later.
|
| CVE-2026-44022 |
|
Path Traversal in docling (CVE-2026-44022)
path traversal in docling (CVE-2026-44022). Confidential information can be exposed externally. Mitigation: upgrade to `2.91.0` or later.
|
| CVE-2026-44020 |
|
Vulnerability in docling (CVE-2026-44020)
vulnerability in docling (CVE-2026-44020). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.74.0` or later.
|
| CVE-2026-44018 |
|
Vulnerability in docling (CVE-2026-44018)
vulnerability in docling (CVE-2026-44018). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.91.0` or later.
|
| CVE-2026-44016 |
|
Code Injection in docling (CVE-2026-44016)
code injection in docling (CVE-2026-44016). Confidential information can be exposed externally. Exploitable via ``enable_remote_fetch``. Mitigation: upgrade to `2.91.0` or later.
|
| CVE-2026-44017 |
|
Path Traversal in docling (CVE-2026-44017)
path traversal in docling (CVE-2026-44017). Successful exploitation can lead to full system takeover. Exploitable via ``SecurityError``. Mitigation: upgrade to `2.91.0` or later.
|