gsoap is vulnerable to denial-of-service. The WS-Security plugin functionality allows an attacker to crash the application using a malicious SOAP request.
lists.fedoraproject.org/archives/list/[email protected]/message/JINMAJB4WQASTKTNSPQL3V7YMSYPKIA2/
lists.fedoraproject.org/archives/list/[email protected]/message/SMTJ3SJJ22SFLBLPKFADV7NVBH7UFA23/
security-tracker.debian.org/tracker/CVE-2020-13574
talosintelligence.com/vulnerability_reports/TALOS-2020-1185