CVE lookup
CVE-2026-40047
Pruva has a verified reproduction for CVE-2026-40047: Apache Camel camel-docling improperly validates custom CLI arguments, enabling argument injection and path traversal when untrusted data is mapped into docling invocation headers.. The canonical evidence record is REPRO-2026-00264.
REPRO
REPRO-2026-00264
Package
apache/camel · Maven
Severity
CRITICAL
Status
published