Package impact
PyPI / docling
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-47214 | unknown | — | — | 8h ago | Docling: Unsafe URI and Path Handling in HTML Backend | |||
| CVE-2026-44022 | unknown | — | — | 8h ago | Docling: Potential Path Traversal via LaTeX \includegraphics and \input Commands | |||
| CVE-2026-44020 | unknown | — | — | 8h ago | Docling: Unsafe XML Entity Expansion in USPTO Patent Backend | |||
| CVE-2026-44018 | unknown | — | — | 8h ago | Docling: Unsafe Archive Extraction and XML Parsing in METS-GBS Backend | |||
| CVE-2026-44016 | unknown | — | — | 8h ago | Docling: Unsafe Playwright-based HTML Rendering | |||
| CVE-2026-44017 | unknown | — | — | 9h ago | Docling: Unsafe Zip Extraction in EasyOCR Model Download |