A vulnerability was found in RWS WorldServer up to 11.7.2. It has been declared as critical. This vulnerability affects unknown code of the file ws-legacy/load_dtd of the component Apache Axis Service. The manipulation of the argument system_id leads to server-side request forgery.

This vulnerability was named CVE-2022-34269. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.