A vulnerability was found in libexpat up to 2.6.1. It has been rated as problematic. This issue affects the function XML_ExternalEntityParserCreate. The manipulation leads to xml external entity reference.

The identification of this vulnerability is CVE-2024-28757. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.