Lucene search
+L

741 matches found

Rockylinux
Rockylinux
added 2025/07/29 1:40 p.m.9 views

ruby:3.1 security update

An update is available for module.ruby, rubygem-pg, ruby, module.rubygem-pg, module.rubygem-mysql2, rubygem-mysql2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE li...

7.5CVSS6.6AI score0.01493EPSS
Exploits0
OSV
OSV
added 2025/07/29 1:40 p.m.7 views

RLSA-2025:4488 Moderate: ruby:3.1 security update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: rexml: DoS vulnerability in REXML CVE-2024-39908 rexml: rubygem-rexml: DoS when parsing an XML having many specific characters suc...

5.9CVSS8.3AI score0.01493EPSS
Exploits0References8
OSV
OSV
added 2025/07/29 1:38 p.m.8 views

RLSA-2025:11047 Moderate: pcs security update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rexml: REXML ReDoS vulnerability CVE-2024-49761 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...

7.5CVSS9.6AI score0.01429EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2025/07/29 1:38 p.m.5 views

pcs security update

An update is available for pcs. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The pcs packages provide a command-line configuration system for the Pacemaker an...

8.7CVSS7.8AI score0.01429EPSS
Exploits0
OSV
OSV
added 2025/07/29 1:38 p.m.7 views

RLSA-2025:4063 Moderate: ruby:3.1 security update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: rexml: DoS vulnerability in REXML CVE-2024-39908 rexml: rubygem-rexml: DoS when parsing an XML having many specific characters suc...

5.9CVSS8.3AI score0.01493EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/07/23 12:0 a.m.5 views

Ruby REXML < 3.3.6 DoS vulnerability

The version of the REXML Ruby library installed on the remote host is prior to 3.3.6. It is, therefore, affected by a DoS vulnerability. The vulnerability lies when it parses an XML that has many deep elements that have same local name attributes. If you need to parse untrusted XMLs with tree...

5.9CVSS6.6AI score0.01205EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/07/22 12:0 a.m.6 views

Alibaba Cloud Linux 3 : 0118: pcs (ALINUX3-SA-2025:0118)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0118 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-49761: REXML is an XML toolkit for Ruby. T...

8.7CVSS7.5AI score0.01429EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/07/15 12:35 a.m.3 views

Moderate: Red Hat Security Advisory: pcs security update

An update for pcs is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

8.7CVSS6.9AI score0.01429EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2025/07/15 12:0 a.m.8 views

pcs security update

0.10.18-2.0.1.6 - Replace HAM-logo.png with a generic one 0.10.18-2.el810.6 - Fixed CVE-2024-49761 by updating rubygem rexml Resolves: RHEL-98708...

8.7CVSS7.9AI score0.01429EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/07/15 12:0 a.m.5 views

RHEL 8 : pcs (RHSA-2025:11047)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:11047 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rexml: REXML ReDoS...

8.7CVSS7.6AI score0.01429EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/07/11 12:0 a.m.3 views

CBL Mariner 2.0 Security Update: ruby / rubygem-rexml (CVE-2024-43398)

The version of ruby / rubygem-rexml installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43398 advisory. - REXML is an XML toolkit for Ruby. The REXML gem before 3.3.6 has a DoS vulnerability when it...

5.9CVSS7.3AI score0.01205EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/07/11 12:0 a.m.4 views

Azure Linux 3.0 Security Update: ruby (CVE-2024-43398)

The version of ruby installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43398 advisory. - REXML is an XML toolkit for Ruby. The REXML gem before 3.3.6 has a DoS vulnerability when it parses an XML tha...

5.9CVSS7.2AI score0.01205EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/07/10 3:7 p.m.7 views

CVE-2024-43398 affecting package rubygem-rexml for versions less than 3.2.9-1

CVE-2024-43398 affecting package rubygem-rexml for versions less than 3.2.9-1. A patched version of the package is available...

5.9CVSS7.3AI score0.01205EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2025/07/08 12:0 a.m.9 views

REXML: Multiple Vulnerabilities

Background REXML is an XML toolkit for Ruby. Description Multiple vulnerabilities have been discovered in REXML. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time...

8.7CVSS7.5AI score0.02064EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/07/08 12:0 a.m.5 views

GLSA-202507-08 : REXML: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202507-08 REXML: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in REXML. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from...

8.7CVSS7.1AI score0.02064EPSS
Exploits1References12
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/17 8:3 a.m.10 views

Security Bulletin: IBM Cloud Pak for Data is vulnerable to Improper Restriction of Recursive Entity References due to rexml package ( CVE-2024-43398 )

Summary Potential vulnerabilities in rexml package CVE-2024-43398 has been identified that may affect IBM Cloud Pak for Data. Vulnerability Details CVEID:CVE-2024-43398 DESCRIPTION: REXML is an XML toolkit for Ruby. The REXML gem before 3.3.6 has a DoS vulnerability when it parses an XML that has...

5.9CVSS9.6AI score0.01205EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 3: ruby:2.5 (TSSA-2024:1115)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1115 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

8.7CVSS7.5AI score0.01429EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: pcs (TSSA-2024:0401)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0401 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

5.3CVSS7.1AI score0.02064EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 3: pcs (TSSA-2024:0724)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0724 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.1AI score0.01283EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: ruby:3.1 (TSSA-2025:0359)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0359 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.2AI score0.01493EPSS
Exploits0References8
Rows per page
Query Builder