cbcvebase.
CVE-2024-35176
published 2024-05-16

CVE-2024-35176: REXML is an XML toolkit for Ruby. The REXML gem before 3.2.6 has a denial of service vulnerability when it parses an XML that has many `<`s in an attribute…

PriorityP427medium5.3CVSS 3.1
AVNACLPRNUINSUCNINAL
EPSS
2.06%
79.0th percentile
REXML is an XML toolkit for Ruby. The REXML gem before 3.2.6 has a denial of service vulnerability when it parses an XML that has many `<`s in an attribute value. Those who need to parse untrusted XMLs may be impacted to this vulnerability. The REXML gem 3.2.7 or later include the patch to fix this vulnerability. As a workaround, don't parse untrusted XMLs.

Affected

17 ranges
VendorProductVersion rangeFixed in
debianruby2.7< ruby2.7 2.7.4-1+deb11u3 (bullseye)ruby2.7 2.7.4-1+deb11u3 (bullseye)
debianruby3.1< ruby2.7 2.7.4-1+deb11u3 (bullseye)ruby2.7 2.7.4-1+deb11u3 (bullseye)
msrcazl3_ruby_3.3.0-4_on_azure_linux_3.0
msrcazl3_ruby_3.3.3-1_on_azure_linux_3.0
msrcazl3_rubygem-rexml_3.2.6-1_on_azure_linux_3.0
msrcazl3_rubygem-rexml_3.2.8-1_on_azure_linux_3.0
msrcazure_linux_3.0_arm
msrcazure_linux_3.0_x64
msrccbl2_ruby_3.1.4-6_on_cbl_mariner_2.0
msrccbl2_ruby_3.1.4-9_on_cbl_mariner_2.0
msrccbl2_rubygem-rexml_3.2.5-1_on_cbl_mariner_2.0
msrccbl2_rubygem-rexml_3.2.7-1_on_cbl_mariner_2.0
msrccbl_mariner_2.0_arm
msrccbl_mariner_2.0_x64
ruby-langrexml< 3.2.73.2.7
rubyrexml< 3.2.73.2.7
rubyrexml>= 0 < 3.2.73.2.7

CVSS provenance

nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
osv9.8CRITICAL
vendor_ubuntu9.8CRITICAL
vendor_debian5.3MEDIUM
vendor_msrc5.3MEDIUM
vendor_redhat5.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.