CVE-2026-24009CRITICALCVSS 9.8≥ 2.21.0, < 2.48.42026-01-22
CVE-2026-24009 [CRITICAL] CVE-2026-24009: Docling Core (or docling-core) is a library that defines core data types and transformations in the
Docling Core (or docling-core) is a library that defines core data types and transformations in the document processing application Docling. A PyYAML-related Remote Code Execution (RCE) vulnerability, namely CVE-2020-14343, is exposed in docling-core starting in version 2.21.0 and prior to version 2.48.4, specifically only if the application uses pyyaml pr
nvd