This vulnerability is solved in the recent JRE environment, especially in the versions that are supported by the newest Dollar Universe Releases.

https://docs.automic.com/documentation/PDF/english/all/components/DU_AS/latest/Dollar+Universe+-+Compatibility+Matrix

Technical details to this vulnerability can found here https://nvd.nist.gov/vuln/detail/CVE-2021-3517

see:

=======================================================

There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this flaw is to application availability, with some potential impact to confidentiality and integrity if an attacker is able to use memory information to further exploit the application.

=======================================================

Release : 6.9 Component : Dollar Universe

The CVE-2021-3517 affects the libxml2 library prior to version 2.9.11. In currently available DUAS releases contains the library libxml2 2.6.x.

This vulnerability will be removed from Dollar Universe coming versions 6.10.101 and 6.7.01

Keeping JRE installed up to date. 

Update Dollar Universe implementation to the versions below as soon as they are available

6.10.101   available in june 2022

7.0.01       available end of April 2022