Skip to main content

Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

CVE-2024-43398

Severity Medium
Score 5.9/10

Summary

REXML is an XML toolkit for Ruby. In rexml gem versions 3.1.7.3 through 3.3.5 have a Denial-of-service vulnerability when it parses an XML that has many deep elements that have the same local name attributes. If you need to parse untrusted XMLs with a tree parser API like "REXML::Document.new", you may be impacted by this vulnerability. This vulnerability is unaffected if you use other parser APIs, such as the stream parser API and the SAX2 parser API.

  • HIGH
  • NETWORK
  • NONE
  • UNCHANGED
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-776 - Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

The software uses XML documents and allows their structure to be defined with a Document Type Definition (DTD), but it does not properly control the number of recursive definitions of entities.

Advisory Timeline

  • Published