All 3 CVE vulnerabilities found in docling-core, with AI-generated Chinese analysis, references, and POCs.
Vendor: docling-project
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-44023 | Docling Core has unsafe remote filename resolution CWE-22 | 8.6 | High | 2026-07-16 |
| CVE-2026-44019 | Docling Core has insufficient validation of image reference URIs CWE-73 | 8.1 | High | 2026-07-16 |
| CVE-2026-24009 | Docling Core vulnerable to Remote Code Execution via unsafe PyYAML usage CWE-502 | 8.1 | High | 2026-01-22 |
All 3 known CVE vulnerabilities affecting docling-core with full Chinese analysis, references, and POCs where available.