Security Advisory

CVE-2022-40705

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-22 08:15:16

Last updated 2024-08-03 12:21:46

Assigner apache

State PUBLISHED

Description

An Improper Restriction of XML External Entity Reference vulnerability in RPCRouterServlet of Apache SOAP allows an attacker to read arbitrary files over HTTP. This issue affects Apache SOAP version 2.2 and later versions. It is unknown whether previous versions are also affected. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

← Browse all CVEs View on cve.org ↗