10Mar
CVE-2024-28757 | libexpat up to 2.6.1 XML_ExternalEntityParserCreate xml external entity reference (Issue 839)
A vulnerability was found in libexpat up to 2.6.1. It has been rated as problematic. This issue affects the functionXML_ExternalEntityParserCreate
. The manipulation leads to xml external entity reference.
The identification of this vulnerability is CVE-2024-28757. The attack needs to be approached within the local network. There is no exploit available.
It is recommended to apply a patch to fix this issue.