CVE-2021-47621

Name of the Vulnerable Software and Affected Versions ClassGraph versions prior to 4.8.112

Description The issue concerns the susceptibility of ClassGraph to XML eXternal Entity (XXE) attacks. This means that an attacker could potentially exploit the software by injecting malicious XML code, leading to unauthorized access to sensitive data or other malicious activities.

Recommendations For versions prior to 4.8.112, update to version 4.8.112 or later to resolve the issue. As a temporary workaround, consider restricting the processing of external XML entities to minimize the risk of exploitation.