A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1187
https://lists.debian.org/debian-lts-announce/2024/02/msg00015.html