GHSA-jmmv-h3mp-59v8HighCVSS 8.6
Docling Core: Unsafe remote filename resolution
🔗 CVE IDs covered (1)
📋 Description
Impact
In versions >= 1.5.0, < 2.74.1, docling-core did not sufficiently restrict remote request destinations and could resolve a server-provided Content-Disposition to a local path in an unsafe manner.
In applications that accept untrusted URLs, this could allow SSRF attacks targeting local files outside the user-defined cache directory.
Patches
Patched in docling-core 2.74.1.
The fix adds stricter validation for remote destinations and normalizes server-provided filenames before use.
Users should upgrade to:
docling-core>= 2.74.1
Workarounds
If upgrading is not immediately possible, avoid passing untrusted URLs into remote fetch functionality.
References
- Fix release:
v2.74.1
🎯 Affected products1
- pip/docling-core:>= 1.5.0, < 2.74.1