A vulnerability, which was classified as problematic, has been found in Apache SOAP 2.2. Affected by this issue is some unknown functionality of the component RPCRouterServlet. The manipulation leads to xml external entity reference. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability is handled as CVE-2022-40705. Access to the local network is required for this attack to succeed. There is no exploit available.