AI Score
Confidence
High
EPSS
Percentile
43.0%
Juho Nurminen discovered that the REXML gem bundled with Ruby incorrectly parsed and serialized XML documents. A remote attacker could possibly use this issue to perform an XML round-trip attack.
ubuntu.com/security/CVE-2021-28965
ubuntu.com/security/notices/USN-4922-1