XML External Entity Injection Affecting docling package, versions [2.45.0,2.91.0)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-PYTHON-DOCLING-17151841
- published4 Jun 2026
- disclosed3 Jun 2026
- creditMartin Brodeur
Introduced: 3 Jun 2026
NewCVE-2026-44018 (opens in a new tab)Common Vulnerabilities and Exposures (CVE) are common identifiers for publicly known security vulnerabilities
Common Weakness Enumeration (CWE) is a category system for software weaknesses
Common Weakness Enumeration (CWE) is a category system for software weaknesses
Common Weakness Enumeration (CWE) is a category system for software weaknesses
How to fix?
Upgrade docling to version 2.91.0 or higher.
Overview
docling is a SDK and CLI for parsing PDF, DOCX, HTML, and more, to a unified document representation for powering downstream workflows such as gen AI applications.
Affected versions of this package are vulnerable to XML External Entity Injection in the METS-GBS backend's XML parsing and archive extraction processes. An attacker can exhaust system resources or read local files by submitting malicious METS-GBS archives that trigger excessive decompression.