CVE-2021-44556

Name of the Vulnerable Software and Affected Versions: National Library of the Netherlands digger version < 6697d1269d981e35e11f240725b16401b5ce3db5

Description: The issue is related to a XML External Entity (XXE) vulnerability. This vulnerability can be exploited by a malicious XML stream, potentially leading to the leakage of internal files and/or causing a Denial of Service (DoS).

Recommendations: For versions prior to 6697d1269d981e35e11f240725b16401b5ce3db5, consider updating to a version that includes a fix for this issue. As a temporary workaround, restrict the parsing of external XML entities to minimize the risk of exploitation.