PyPI package
unstructured
pkg:pypi/unstructured
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-64712 | — | < 0.18.18 | 0.18.18 | Feb 4, 2026 | The unstructured library provides open-source components for ingesting and pre-processing images and text documents, such as PDFs, HTML, Word docs, and many more. Prior to version 0.18.18, a path traversal vulnerability in the partition_msg function allows an attacker to write or | ||
| CVE-2024-46455 | Cri | 9.8 | < 0.14.3 | 0.14.3 | Dec 9, 2024 | unstructured v.0.14.2 and before is vulnerable to XML External Entity (XXE) via the XMLParser. |
- CVE-2025-64712Feb 4, 2026affected < 0.18.18fixed 0.18.18
The unstructured library provides open-source components for ingesting and pre-processing images and text documents, such as PDFs, HTML, Word docs, and many more. Prior to version 0.18.18, a path traversal vulnerability in the partition_msg function allows an attacker to write or
- affected < 0.14.3fixed 0.14.3
unstructured v.0.14.2 and before is vulnerable to XML External Entity (XXE) via the XMLParser.