Skip to content

GHSA lookup

GHSA-RPV3-6645-2VQC

Pruva has a verified reproduction for GHSA-RPV3-6645-2VQC: Apache Camel camel-docling improperly validates custom CLI arguments, enabling argument injection and path traversal when untrusted data is mapped into docling invocation headers.. The canonical evidence record is REPRO-2026-00264.

REPRO

REPRO-2026-00264

Package

apache/camel · Maven

Severity

CRITICAL

Status

published