Skip to content

CVE lookup

CVE-2026-24009

Pruva has a verified reproduction for CVE-2026-24009: Docling-core YAML Deserialization RCE via FullLoader. The canonical evidence record is REPRO-2026-00080.

REPRO

REPRO-2026-00080

Package

docling-core · pip

Severity

HIGH

Status

published