Impact
Docling’s HTML backend processes URI and file path inputs without adequate validation, permitting an attacker to craft requests that reference files outside the intended directory. This flaw enables reading of files that should be inaccessible through the web interface, potentially exposing sensitive data. The vulnerability is confined to the handling of URIs and paths and does not grant arbitrary code execution or system-wide compromise. Furthermore, the unchecked handling can lead to uncontrolled consumption of system resources, potentially resulting in denial-of-service conditions.
Affected Systems
All releases of the Docling project prior to version 2.94 affected. The issue resides in the HTML backend component, which forms part of the docling-project:docling product family. Users who have exposed that backend to external clients have an operational risk until the issue is addressed.
Risk and Exploitability
The CVSS score of 7.1 categorises the problem as moderate to high severity. EPSS indicates a very low probability of exploitation (< 1%). The vulnerability is not listed in CISA’s KEV catalog. The likely attack vector is a network‑exposed endpoint of the HTML backend where an attacker can send specially crafted URI or path parameters to traverse directories and retrieve confidential files. Acquisition of privileged local access is not required for exploitation.
OpenCVE Enrichment
Github GHSA