25Ara
CVE-2022-34269 | RWS WorldServer up to 11.7.2 Apache Axis Service ws-legacy/load_dtd system_id server-side request forgery
A vulnerability was found in RWS WorldServer up to 11.7.2. It has been declared as critical. This vulnerability affects unknown code of the file ws-legacy/load_dtd of the component Apache Axis Service. The manipulation of the argument system_id leads to server-side request forgery. This vulnerability was named CVE-2022-34269. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.