CVE-2026-42403 — Apache Neethi does not properly detect circular references in policy definitions. When a WS-Policy document contains circular policy references (where Policy A references Policy B which references Pol — CVE Database · The Intelligence Room