{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-44020", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-05-04T21:24:36.506Z", "datePublished": "2026-06-24T17:45:46.644Z", "dateUpdated": "2026-06-25T17:07:57.731Z"}, "containers": {"cna": {"title": "Docling: Unsafe XML Entity Expansion in USPTO Patent Backend", "problemTypes": [{"descriptions": [{"cweId": "CWE-776", "lang": "en", "description": "CWE-776: Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/docling-project/docling/security/advisories/GHSA-m88r-rg27-5xfg", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/docling-project/docling/security/advisories/GHSA-m88r-rg27-5xfg"}], "affected": [{"vendor": "docling-project", "product": "docling", "versions": [{"version": ">= 2.13.0, < 2.74.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-06-24T17:45:46.644Z"}, "descriptions": [{"lang": "en", "value": "Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.13.0 until 2.74.0, the USPTO patent XML parser used the standard xml.sax.parseString() without protection against XML External Entity (XXE) attacks. An attacker could craft malicious USPTO patent XML files with external entity references that could read arbitrary files from the server filesystem, perform Server-Side Request Forgery (SSRF) attacks, or cause denial of service through entity expansion (Billion Laughs attack). The vulnerability affects three USPTO patent format parsers: ICE (v4.x), Grant v2.5, and Application v1.x. This vulnerability is fixed in 2.74.0."}], "source": {"advisory": "GHSA-m88r-rg27-5xfg", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-06-25T17:07:45.571326Z", "id": "CVE-2026-44020", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-06-25T17:07:57.731Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-44020", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-06-25T17:07:45.571326Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-06-25T17:07:52.687Z"}}], "cna": {"title": "Docling: Unsafe XML Entity Expansion in USPTO Patent Backend", "source": {"advisory": "GHSA-m88r-rg27-5xfg", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "docling-project", "product": "docling", "versions": [{"status": "affected", "version": ">= 2.13.0, < 2.74.0"}]}], "references": [{"url": "https://github.com/docling-project/docling/security/advisories/GHSA-m88r-rg27-5xfg", "name": "https://github.com/docling-project/docling/security/advisories/GHSA-m88r-rg27-5xfg", "tags": ["x_refsource_CONFIRM"]}], "descriptions": [{"lang": "en", "value": "Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.13.0 until 2.74.0, the USPTO patent XML parser used the standard xml.sax.parseString() without protection against XML External Entity (XXE) attacks. An attacker could craft malicious USPTO patent XML files with external entity references that could read arbitrary files from the server filesystem, perform Server-Side Request Forgery (SSRF) attacks, or cause denial of service through entity expansion (Billion Laughs attack). The vulnerability affects three USPTO patent format parsers: ICE (v4.x), Grant v2.5, and Application v1.x. This vulnerability is fixed in 2.74.0."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-776", "description": "CWE-776: Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-06-24T17:45:46.644Z"}}}, "cveMetadata": {"cveId": "CVE-2026-44020", "state": "PUBLISHED", "dateUpdated": "2026-06-25T17:07:57.731Z", "dateReserved": "2026-05-04T21:24:36.506Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-06-24T17:45:46.644Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{}

{"bugzilla": {"description": "docling: Docling: Information disclosure via XML External Entity (XXE) vulnerability", "id": "2492456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2492456"}, "csaw": false, "cvss3": {"cvss3_base_score": "9.4", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H", "status": "draft"}, "cwe": "CWE-611", "details": ["A flaw was found in docling. An attacker could exploit an XML External Entity (XXE) vulnerability in the USPTO patent XML parser by crafting malicious XML files. This could allow the attacker to read arbitrary files from the server's filesystem, perform Server-Side Request Forgery (SSRF) attacks, or cause a denial of service by consuming system resources through entity expansion."], "name": "CVE-2026-44020", "package_state": [{"cpe": "cpe:/a:redhat:openshift_ai", "fix_state": "Affected", "package_name": "rhoai/odh-autorag-rhel9", "product_name": "Red Hat OpenShift AI (RHOAI)"}], "public_date": "2026-06-24T17:45:46Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-44020\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-44020\nhttps://github.com/docling-project/docling/security/advisories/GHSA-m88r-rg27-5xfg"], "statement": "This is an Important vulnerability in docling, as shipped with Red Hat OpenShift AI, due to an XML External Entity (XXE) flaw in its USPTO patent XML parser. An attacker could exploit this by providing specially crafted XML files, leading to unauthorized access to local files, Server-Side Request Forgery (SSRF), or denial of service. The broad impact on data confidentiality and system availability elevates this to an Important severity.", "threat_severity": "Important"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[2.13.0,2.74.0)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "docling", "source": "cna", "vendor": "docling-project"}, "product": "docling", "vendor": "docling-project"}], "created": "2026-06-24T20:45:03.356999+00:00", "updated": "2026-06-26T02:00:17.774455+00:00", "vendors": ["docling-project", "docling-project$PRODUCT$docling"]}