CVE-2026-44520

🗓️ 14 May 2026 16:56:58Reported by GitHub_MType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 14 Views🌐 WEB

Docling-Graph SSRF via URLInputHandler from unvalidated private addresses; fixed in 1.5.1.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2026-44520	14 May 202616:56	–	attackerkb
CNNVD	Docling Graph 输入验证错误漏洞	14 May 202600:00	–	cnnvd
Cvelist	CVE-2026-44520 Docling-Graph: SSRF via Missing Internal IP Validation in URLInputHandler	14 May 202616:56	–	cvelist
EUVD	EUVD-2026-30340	14 May 202616:56	–	euvd
Github Security Blog	docling-graph has SSRF via Missing Internal IP Validation in URLInputHandler	7 May 202603:15	–	github
NVD	CVE-2026-44520	14 May 202618:16	–	nvd
OSV	GHSA-FQPH-J6V6-JVGX docling-graph has SSRF via Missing Internal IP Validation in URLInputHandler	7 May 202603:15	–	osv
Positive Technologies	PT-2026-38412	7 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-44520	5 Jun 202619:25	–	redhatcve
Snyk	Server-side Request Forgery (SSRF)	7 May 202603:15	–	snyk

Vulners

Node

docling-project docling-graphRange<1.5.1

[
  {
    "vendor": "docling-project",
    "product": "docling-graph",
    "versions": [
      {
        "version": "< 1.5.1",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/docling-project/docling-graph/security/advisories/GHSA-fqph-j6v6-jvgx

Parameter	Position	Path	Description	CWE
--source	path	docling_graph/core/input/handlers.py	URLInputHandler makes HTTP requests to user-supplied URLs without proper IP validation, enabling SSRF via user-controlled source values or API parameters.	CWE-601, CWE-918
PipelineConfig.source	path	docling_graph/core/input/handlers.py	URLInputHandler makes HTTP requests to user-supplied URLs without proper IP validation, enabling SSRF via user-controlled source values or API parameters.	CWE-601, CWE-918

17 Jun 2026 10:50Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.7

EPSS0.00188

SSVC