CVE-2024-35176

MEDIUM

REXML < 3.2.7 - Denial of Service via Malformed XML Attribute

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-35176. PoCs published by SpiralBL0CK.

AI-analyzed exploit summary The repository contains only a minimal README with no exploit code, technical details, or functional proof-of-concept. It appears to be a placeholder.

Description

REXML is an XML toolkit for Ruby. The REXML gem before 3.2.6 has a denial of service vulnerability when it parses an XML that has many `<`s in an attribute value. Those who need to parse untrusted XMLs may be impacted to this vulnerability. The REXML gem 3.2.7 or later include the patch to fix this vulnerability. As a workaround, don't parse untrusted XMLs.

Exploits (1)

nomisec STUB 5 stars
by SpiralBL0CK · poc
https://github.com/SpiralBL0CK/CVE-2024-35176

The repository contains only a minimal README with no exploit code, technical details, or functional proof-of-concept. It appears to be a placeholder.

Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: unknown
No auth needed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5

Scores

CVSS v3 5.3
EPSS 0.0843
EPSS Percentile 92.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-770 CWE-400
Status published
Products (2)
ruby-lang/rexml < 3.2.7
rubygems/rexml 0 - 3.2.7RubyGems
Published May 16, 2024
Tracked Since Feb 18, 2026