> > Hi all, > > I am not quite sure whether the security vulnerability mentioned here: > https://nvd.nist.gov/vuln/detail/CVE-2022-46364 can still be exploited if > the server is secured via a WSS4JInInterceptor. Therefore my question is: > Are MTOM requests processed even if the client is not yet authenticated? > > Thank you so much in advance. > > Kind regard, > Thomas >
