Количество 14
Количество 14
BDU:2024-08621
Уязвимость набора инструментов XML для Ruby REXML, связанная с неконтролируемым пот реблением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2024-39908
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings.
CVE-2024-39908
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings.
CVE-2024-39908
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings.
CVE-2024-39908
CVE-2024-39908
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some ...
GHSA-4xqq-m2hx-25v8
REXML denial of service vulnerability
ROS-20241021-01
Множественные уязвимости rubygem-rexml
ELSA-2024-6785
ELSA-2024-6785: ruby:3.3 security update (MODERATE)
ELSA-2024-6784
ELSA-2024-6784: ruby:3.3 security update (MODERATE)
SUSE-SU-2024:3874-1
Security update for ruby2.5
openSUSE-SU-2025:0129-1
Security update for rubygem-rexml
ELSA-2025-4488
ELSA-2025-4488: ruby:3.1 security update (MODERATE)
ELSA-2025-4063
ELSA-2025-4063: ruby:3.1 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-08621 Уязвимость набора инструментов XML для Ruby REXML, связанная с неконтролируемым пот реблением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 4.3 | 3% Низкий | около 1 года назад |
 | CVE-2024-39908 REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings. | CVSS3: 4.3 | 3% Низкий | около 1 года назад |
 | CVE-2024-39908 REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings. | CVSS3: 4.3 | 3% Низкий | около 1 года назад |
 | CVE-2024-39908 REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings. | CVSS3: 4.3 | 3% Низкий | около 1 года назад |
 | CVSS3: 4.3 | 3% Низкий | 10 месяцев назад | |
| CVE-2024-39908 REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some ... | CVSS3: 4.3 | 3% Низкий | около 1 года назад |
| GHSA-4xqq-m2hx-25v8 REXML denial of service vulnerability | CVSS3: 4.3 | 3% Низкий | около 1 года назад |
 | ROS-20241021-01 Множественные уязвимости rubygem-rexml | CVSS3: 5.3 | 10 месяцев назад | |
| ELSA-2024-6785 ELSA-2024-6785: ruby:3.3 security update (MODERATE) | 11 месяцев назад | ||
| ELSA-2024-6784 ELSA-2024-6784: ruby:3.3 security update (MODERATE) | 11 месяцев назад | ||
 | SUSE-SU-2024:3874-1 Security update for ruby2.5 | 9 месяцев назад | ||
| openSUSE-SU-2025:0129-1 Security update for rubygem-rexml | 4 месяца назад | ||
| ELSA-2025-4488 ELSA-2025-4488: ruby:3.1 security update (MODERATE) | 3 месяца назад | ||
| ELSA-2025-4063 ELSA-2025-4063: ruby:3.1 security update (MODERATE) | 4 месяца назад |
Уязвимостей на страницу