SPECIAL TOPICS
  1. You are here:Home
  2. Articles
  3. cve-2024-35176-dos-in-rexml

CVE-2024-35176: DoS in REXML

  • 18/05/2024
  • 322

There is a DoS vulnerability in REXML gem. This vulnerability has been assigned the CVE identifier CVE-2024-35176. We strongly recommend upgrading the REXML gem.DetailsWhen parsing an XML document that has many < in an attribute value, REXML gem may take long time.Please update REXML gem to version 3.2.7 or later.Affected versionsREXML gem 3.2.6 or priorCreditsThanks to mprogrammer for discovering this issue.HistoryOriginally published at 2024-05-16 05:00:00 (UTC).
CVE-2024-35176: DoS in REXML #ruby #rubydeveloper #rubyonrails https://www.rubyonrails.ba/single/cve-2024-35176-dos-in-rexml

RubyOnRails.BA

If you think that this shoudn't be here on the site, please contact us and we will remove it.

Read more
previous article

Getting My Dev Environment Set Up Again: My Day in Dependency Hell

share this post
  • linkedin rubyonrails.ba
  • twitter rubyonrails.ba
  • facebook rubyonrails.ba
next article

Speeding up Initial Rendering of Rails Pages with render_async.

quiz.rubyonrails.ba
blog.rubyonrails.ba
Nezir Zahirovic

Contractor Ruby On Rails (8+ years) / MCPD .Net / C# / Asp.Net / CSS / SQL / (11 years)

related articles

Popular Post