cbcvebase.
CVE-2021-28965
published 2021-04-21

CVE-2021-28965: The REXML gem before 3.2.5 in Ruby before 2.6.7, 2.7.x before 2.7.3, and 3.x before 3.0.1 does not properly address XML round-trip issues. An incorrect…

PriorityP343high7.5CVSS 3.1
AVNACLPRNUINSUCNIHAN
EPSS
5.06%
91.2th percentile
The REXML gem before 3.2.5 in Ruby before 2.6.7, 2.7.x before 2.7.3, and 3.x before 3.0.1 does not properly address XML round-trip issues. An incorrect document can be produced after parsing and serializing.

Affected

13 ranges
VendorProductVersion rangeFixed in
debianruby2.7< ruby2.7 2.7.3-1 (bullseye)ruby2.7 2.7.3-1 (bullseye)
fedoraprojectfedora
msrccbl2_ruby_2.7.4-1_on_cbl_mariner_2.0
msrccbl_mariner_1.0_arm
msrccbl_mariner_1.0_x64
msrccbl_mariner_2.0_arm
msrccbl_mariner_2.0_x64
msrccm1_ruby_2.6.7-1_on_cbl_mariner_1.0
ruby-langrexml< 3.2.53.2.5
ruby-langrexml>= 0 < 3.2.53.2.5
ruby-langruby< 2.6.72.6.7
ruby-langruby>= 2.7.0 < 2.7.32.7.3
ruby-langruby>= 3.0.0 < 3.0.13.0.1

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
osv7.5HIGH
vendor_debian7.5HIGH
vendor_msrc7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.