A vulnerability was found in Canonical Apport up to 2.20.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file ~/.config/apport/settings. The manipulation leads to xml entity expansion.
This vulnerability is known as CVE-2022-28652. The attack needs to be approached within the local network. There is no exploit available.
It is recommended to upgrade the affected component.