CVE-2026-31247: Docling's JATS XML backend is vulnerable to XML Entity Expansion (XXE) attacks

May 11, 2026 (updated May 18, 2026)

Docling’s JATS XML backend is vulnerable to XML Entity Expansion (XXE) attacks thru 2.61.0. The backend uses etree.parse() to parse XML files without disabling entity resolution. An attacker can craft a malicious XML file containing a nested entity expansion payload (XML Bomb). When processed by Docling, the exponential expansion of entities leads to excessive resource consumption, resulting in a denial of service (DoS) condition on the system running the Docling parser.

References

github.com/advisories/GHSA-cr42-rg2m-mq4q
github.com/docling-project/docling
nvd.nist.gov/vuln/detail/CVE-2026-31247
www.notion.so/CVE-2026-31247-35d1e1393188818fa654c116c6a470bb

Code Behaviors & Features

Detect and mitigate CVE-2026-31247 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →