Lucene search

GitHub Advisory DatabaseGHSA-4XQQ-M2HX-25V8

HistoryJul 16, 2024 - 7:49 p.m.

REXML denial of service vulnerability

2024-07-1619:49:15

CWE-400

GitHub Advisory Database

github.com

rexml

vulnerability

patched

xml

parsing

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

AI Score

6.9

Confidence

Low

EPSS

Percentile

9.3%

JSON

Impact

The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as <, 0 and %>.

If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities.

Patches

The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities.

Workarounds

Don’t parse untrusted XMLs.

References

https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh : This is a similar vulnerability
https://www.ruby-lang.org/en/news/2024/07/16/dos-rexml-cve-2024-39908/

Affected configurations

Vulners

Node

rexmlRange<3.3.2

VendorProductVersionCPE
*rexml*cpe:2.3:a:*:rexml:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
*	rexml	*	cpe:2.3:a::rexml::::::::*

References

github.com/advisories/GHSA-4xqq-m2hx-25v8

github.com/ruby/rexml/releases/tag/v3.3.2

github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8

github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-39908.yml

nvd.nist.gov/vuln/detail/CVE-2024-39908

www.ruby-lang.org/en/news/2024/07/16/dos-rexml-cve-2024-39908

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

AI Score

6.9

Confidence

Low

EPSS

Percentile

9.3%

JSON

Related for GHSA-4XQQ-M2HX-25V8