Impact
Docling versions 2.82.0 to less than 2.91.0 expose a Playwright‑based HTML rendering component that, when explicitly enabled, can execute JavaScript contained in untrusted HTML and perform unrestricted network calls. An attacker who supplies crafted HTML could trigger arbitrary code execution in the rendering process or make unauthorized requests to internal services, leading to SSRF, data exfiltration, or remote code execution.
Affected Systems
The affected software is the docling project’s docling package, specifically versions 2.82.0 through 2.90.x inclusive. No other products or vendors are listed.
Risk and Exploitability
The CVSS score is 8.2, indicating a high severity. EPSS information is not available, and the vulnerability is not listed in CISA KEV. The attack would likely occur when an application incorporating Docling receives or processes untrusted HTML. The vulnerability can be leveraged by an attacker who can influence the input that the rendering backend processes, thereby executing JavaScript in the rendering context or initiating network requests to internal services.
OpenCVE Enrichment
Github GHSA