CVE-2026-31248

HIGH

Docling < 2.61.0 - XML Entity Expansion Denial of Service via METS GBS Backend

Title source: llm

Description

Docling's METS GBS backend is vulnerable to XML Entity Expansion (XXE) attacks thru 2.61.0. The backend extracts and validates XML files from .tar.gz archives using etree.fromstring() without disabling entity resolution. An attacker can craft a malicious XML file with nested entity definitions (XML Bomb) and package it into a .tar.gz archive. When processed by Docling, the exponential expansion of entities during XML parsing leads to excessive resource consumption, resulting in a denial of service (DoS) condition on the system running the Docling parser.

References (2)

Core 2

Core References

https://github.com/docling-project/docling

https://www.notion.so/CVE-2026-31248-35d1e1393188818585b2ce3b9ce24686

Scores

CVSS v3 7.5

EPSS 0.0007

EPSS Percentile 20.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-776

Status published

Products (1)

pypi/docling 0 - 2.61.0PyPI

Published May 11, 2026

Tracked Since May 11, 2026