{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-41123", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-07-15T15:53:28.323Z", "datePublished": "2024-08-01T14:18:43.611Z", "dateUpdated": "2024-08-01T15:46:58.083Z"}, "containers": {"cna": {"title": "REXML DoS vulnerability", "problemTypes": [{"descriptions": [{"cweId": "CWE-400", "lang": "en", "description": "CWE-400: Uncontrolled Resource Consumption", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/ruby/rexml/security/advisories/GHSA-r55c-59qm-vjw6", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/ruby/rexml/security/advisories/GHSA-r55c-59qm-vjw6"}, {"name": "https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8", "tags": ["x_refsource_MISC"], "url": "https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8"}, {"name": "https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh", "tags": ["x_refsource_MISC"], "url": "https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh"}, {"name": "https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123", "tags": ["x_refsource_MISC"], "url": "https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123"}], "affected": [{"vendor": "ruby", "product": "rexml", "versions": [{"version": "< 3.3.3", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-08-01T14:18:43.611Z"}, "descriptions": [{"lang": "en", "value": "REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`. The REXML gem 3.3.3 or later include the patches to fix these vulnerabilities."}], "source": {"advisory": "GHSA-r55c-59qm-vjw6", "discovery": "UNKNOWN"}}, "adp": [{"affected": [{"vendor": "ruby-lang", "product": "rexml", "cpes": ["cpe:2.3:a:ruby-lang:rexml:*:*:*:*:*:ruby:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "3.3.3", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-01T14:33:21.621506Z", "id": "CVE-2024-41123", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-01T15:46:58.083Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-41123", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-08-01T14:33:21.621506Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:ruby-lang:rexml:*:*:*:*:*:ruby:*:*"], "vendor": "ruby-lang", "product": "rexml", "versions": [{"status": "affected", "version": "0", "lessThan": "3.3.3", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-01T14:34:38.189Z"}}], "cna": {"title": "REXML DoS vulnerability", "source": {"advisory": "GHSA-r55c-59qm-vjw6", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "ruby", "product": "rexml", "versions": [{"status": "affected", "version": "< 3.3.3"}]}], "references": [{"url": "https://github.com/ruby/rexml/security/advisories/GHSA-r55c-59qm-vjw6", "name": "https://github.com/ruby/rexml/security/advisories/GHSA-r55c-59qm-vjw6", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8", "name": "https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh", "name": "https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh", "tags": ["x_refsource_MISC"]}, {"url": "https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123", "name": "https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`. The REXML gem 3.3.3 or later include the patches to fix these vulnerabilities."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-400", "description": "CWE-400: Uncontrolled Resource Consumption"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-08-01T14:18:43.611Z"}}}, "cveMetadata": {"cveId": "CVE-2024-41123", "state": "PUBLISHED", "dateUpdated": "2024-08-01T15:46:58.083Z", "dateReserved": "2024-07-15T15:53:28.323Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-08-01T14:18:43.611Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ruby-lang:rexml:*:*:*:*:*:ruby:*:*", "matchCriteriaId": "EBF24ACB-780A-4611-B978-F93033207F85", "versionEndExcluding": "3.2.7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ruby-lang:rexml:*:*:*:*:*:ruby:*:*", "matchCriteriaId": "35894CC8-FEFA-4F30-A9FF-4582B7DF108C", "versionEndExcluding": "3.3.2", "versionStartIncluding": "3.2.8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`. The REXML gem 3.3.3 or later include the patches to fix these vulnerabilities."}, {"lang": "es", "value": "REXML es un conjunto de herramientas XML para Ruby. La gema REXML anterior a 3.3.2 tiene algunas vulnerabilidades DoS cuando analiza un XML que tiene muchos caracteres espec\u00edficos, como espacios en blanco, `&gt;]` y `]&gt;`. La gema REXML 3.3.3 o posterior incluye los parches para corregir estas vulnerabilidades."}], "id": "CVE-2024-41123", "lastModified": "2024-10-10T12:56:29.837", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-08-01T15:15:13.213", "references": [{"source": "security-advisories@github.com", "tags": ["Not Applicable"], "url": "https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8"}, {"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/ruby/rexml/security/advisories/GHSA-r55c-59qm-vjw6"}, {"source": "security-advisories@github.com", "tags": ["Not Applicable"], "url": "https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh"}, {"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-400"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-400"}], "source": "security-advisories@github.com", "type": "Secondary"}]}

{"affected_release": [{"advisory": "RHSA-2024:6784", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "ruby:3.3-8100020240906074654.489197e6", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2024-09-18T00:00:00Z"}, {"advisory": "RHSA-2024:6670", "cpe": "cpe:/a:redhat:enterprise_linux:8::highavailability", "package": "pcs-0:0.10.18-2.el8_10.2", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2024-09-16T00:00:00Z"}, {"advisory": "RHSA-2024:6702", "cpe": "cpe:/a:redhat:rhel_tus:8.6::highavailability", "package": "pcs-0:0.10.12-6.el8_6.6", "product_name": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service", "release_date": "2024-09-16T00:00:00Z"}, {"advisory": "RHSA-2024:6702", "cpe": "cpe:/a:redhat:rhel_e4s:8.6::highavailability", "package": "pcs-0:0.10.12-6.el8_6.6", "product_name": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions", "release_date": "2024-09-16T00:00:00Z"}, {"advisory": "RHSA-2024:6703", "cpe": "cpe:/a:redhat:rhel_eus:8.8::highavailability", "package": "pcs-0:0.10.15-4.el8_8.3", "product_name": "Red Hat Enterprise Linux 8.8 Extended Update Support", "release_date": "2024-09-16T00:00:00Z"}, {"advisory": "RHSA-2024:6785", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "ruby:3.3-9040020240906110954.9", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2024-09-18T00:00:00Z"}], "bugzilla": {"description": "rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace character, >] and ]>", "id": "2302268", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302268"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.3", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "status": "verified"}, "cwe": "CWE-400", "details": ["REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`. The REXML gem 3.3.3 or later include the patches to fix these vulnerabilities.", "A vulnerability was found in REXML, an XML toolkit used for Ruby. When parsing an untrusted XML with many specific characters, the REXML gem may take a long time, leading to a denial of service condition. Some of these special characters include the whitespace character, '>]', and ']>'."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability. It is recommended to upgrade the REXML gem to fix these vulnerabilities."}, "name": "CVE-2024-41123", "package_state": [{"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Affected", "package_name": "3scale-amp-backend-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Affected", "package_name": "3scale-amp-system-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Affected", "package_name": "3scale-amp-zync-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Affected", "package_name": "3scale-toolbox-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Will not fix", "package_name": "ruby:2.5/ruby", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Affected", "package_name": "ruby:3.1/ruby", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Will not fix", "package_name": "pcs", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "ruby:3.0/ruby", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "ruby:3.1/ruby", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/a:redhat:openstack:16.1", "fix_state": "Will not fix", "package_name": "puppet-datacat", "product_name": "Red Hat OpenStack Platform 16.1"}, {"cpe": "cpe:/a:redhat:openstack:16.1", "fix_state": "Out of support scope", "package_name": "puppet-etcd", "product_name": "Red Hat OpenStack Platform 16.1"}, {"cpe": "cpe:/a:redhat:openstack:16.1", "fix_state": "Out of support scope", "package_name": "puppet-opendaylight", "product_name": "Red Hat OpenStack Platform 16.1"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Not affected", "package_name": "puppet-datacat", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Not affected", "package_name": "puppet-etcd", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Not affected", "package_name": "puppet-opendaylight", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:openstack:17.1", "fix_state": "Not affected", "package_name": "puppet-etcd", "product_name": "Red Hat OpenStack Platform 17.1"}, {"cpe": "cpe:/a:redhat:satellite:6", "fix_state": "Not affected", "package_name": "foreman", "product_name": "Red Hat Satellite 6"}, {"cpe": "cpe:/a:redhat:satellite:6", "fix_state": "Not affected", "package_name": "foreman-proxy", "product_name": "Red Hat Satellite 6"}], "public_date": "2024-08-01T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-41123\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-41123\nhttps://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8\nhttps://github.com/ruby/rexml/security/advisories/GHSA-r55c-59qm-vjw6\nhttps://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh\nhttps://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123"], "statement": "Red Hat believes this flaw to be moderate because a potential denial of service condition would create minimal impact at the application level and not the entire system.", "threat_severity": "Moderate"}