@cyclonedx/cyclonedx-library Improper Restriction of XML External Entity Reference vulnerability
XML External entity injections could be possible, when running the provided XML Validator on arbitrary input.
Advisories for Npm/@Cyclonedx/Cyclonedx-Library package
2024