PT-2026-45850 · Undefined · Undefined
Published
2026-06-02
·
Updated
2026-06-02
·
CVE-2026-44019
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
🚨 Critical - Docling-Core Path Traversal (CVE-2026-44019)
A critical path traversal vulnerability in docling-core allows remote attackers to read arbitrary files from the host server. The flaw stems from insufficient input sanitization when processing specific documents, enabling path traversal sequences to escape the intended directory.
👉 File disclosure and data exfiltration risk | Upgrade to the latest patched version immediately
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Undefined