PyPI/docling-core — 3 CVEs

HIGH8.6CVE-2026-44023Docling Core: Unsafe remote filename resolution

>= 1.5.0, < 2.74.1

HIGH8.1CVE-2026-44019Docling Core: Insufficient validation of image reference URIs

>= 2.5.0, < 2.74.1

HIGH8.1CVE-2026-24009docling-core vulnerable to Remote Code Execution via unsafe PyYAML usage

>= 2.21.0, < 2.48.4

pkg:PyPI/docling-core