CVE-2024-35176

MEDIUM

Ruby-lang Rexml < 3.2.7 - Denial of Service

Title source: rule

Description

REXML is an XML toolkit for Ruby. The REXML gem before 3.2.6 has a denial of service vulnerability when it parses an XML that has many `<`s in an attribute value. Those who need to parse untrusted XMLs may be impacted to this vulnerability. The REXML gem 3.2.7 or later include the patch to fix this vulnerability. As a workaround, don't parse untrusted XMLs.

Exploits (1)

nomisec STUB 5 stars

by SpiralBL0CK · poc

https://github.com/SpiralBL0CK/CVE-2024-35176

View Code ZIP pw:eip

References (5)

[Patch] https://github.com/ruby/rexml/commit/4325835f92f3f142ebd91a3fdba4e1f1ab7f1cfb

[Vendor Advisory] https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh

[Vendor Advisory] https://www.ruby-lang.org/en/news/2024/05/16/dos-rexml-cve-2024-35176

[Mailing List] https://lists.debian.org/debian-lts-announce/2025/01/msg00011.html

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20250306-0001/

Scores

CVSS v3 5.3

EPSS 0.0640

EPSS Percentile 91.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Details

CWE

CWE-770 CWE-400

Status published

Products (2)

rubygems/rexml 0 - 3.2.7RubyGems

ruby-lang/rexml < 3.2.7

Published May 16, 2024

Tracked Since Feb 18, 2026